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855-GREP-4-1X 
www.iksystems.com 
Enterprise Serversand Storage 
for Open Source 


# Bock-Selid Performance 


¥ Professional In-House Support 


TrueNAS 


UNIFIED. SCALABLE. FLEXIBLE. 


Across all industries the demands of data infrastructure have soared to new heights. 


As capacity requirements continue to rise at an ever-increasing rate, performance must not be compromised. The hybrid 
architecture and advanced software capabilities of the TrueNAS appliance enable users to be more agile, effectively 
manage the explosion of unstructured data and deploy a centralized information storage infrastructure. Whether it’s 
backing virtual machines, business applications, or web services, there’s a TrueNAS appliance suited to the task. 


TrueNAS™ Storage Appliances: Harness The Cloud 


iXsystems’ TrueNAS Appliances offer scalable high-throughput, low latency storage 


All TrueNAS Storage Appliances feature the Intel” Xeon” Processors 5600 series, powering the fastest data transfer 
speeds and lowest latency possible. TrueNAS appliances come in three lines: Performance, Archiver, & High Availability. 
High-performance, high-capacity ioMemory modules from Fusion-io are available in the TrueNAS Enterprise, Ultimate, 


and Archiver Pro models. 


if TrueNAS 


Key Features: 


¢ 


« One or Two Six-Core Intel® Xeon® Processors 
5600 series 

« Share Data over CIFS, NFS and iSCSI 

« Hybrid storage pool increases performance and 
decreases energy footprint 


¢ 128-bit ZFS file system with up to triple parity 
software RAID 
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Call iXsystems toll free or visit our website today! 
1-855-GREP-4-IX | www.iXsystems.com 


Intel, the Intel loqe, and Xeon Inside are trademarks or registered trademarks of Intel Corporation in the US. and other countries. 
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Let’s Talk 


OSFreeNAS - Detachable Storage has 
Come of Age 
By Rob Somerville 
As FreeNAS is very light, it is ideal for installing on older 
hardware, and provided the target box has > 6GB of RAM, 
the security and additional functionality of ZFS is available 
facilitating snapshots. 


41. O Which FreeNAS? Lessons from a Year in 
the Trenches with BSD’s Killer App 
By Michael Dexter 
We have developed an insatiable need for digital storage 
and most people probably don't realize how fragile their 
storage infrastructure is until it’s too late. FreeNAS stands 
out from other Open Source storage appliances by bringing 
enterprise-class features to within the reach of just about 
everyone with the key feature being the ZFS “Zettabyte File 
System” developed by Sun Microsystems. 


What’s New 


12 What's New in FreeNAS 8.x 

By Dru Lavigne 
This article highlights some of the new features which 
have been added to FreeNAS 8.x since July, 2012. These 
include the Plugins Jail, ZFSv28, and GELI encryption. 


Developer’s Corner 


16 FreeNAS Plugins: Everything You Ever 
Wanted to Know 
By John Hixson 
Beginning with FreeNAS 8.2.0, a plugin architecture was 
introduced. This architecture allows FreeNAS systems to 
be extended in any way that the user sees fit. In this article 
John describes the technical details of how the architecture 
works so that plugin authors have the knowledge to create 
new plugins. 


How To 


= =Handmade NAS 

By Edward Tan 
From this article you will learn how to build a NAS by 
hand, plugging different components together using the 
command line and FreeBSD. It’s a jumpstart guide on the 
basic components that make up a NAS, which the reader 
can expand on and enrich with more features. 
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In Business 


= SFreeNAS in an Enterprise Environment 
By Mark VonFange and Annie Zhang 

Despite the massive popularity of FreeNAS, most people 
arent aware of its big brother, dutifully storing and 
protecting data in some of the most demanding enterprise 
business environments: the proven, enterprise-ready, 
and professionally-supported line of appliances known as 
TrueNAS. 


3 2Creative Integrations: Workflow 
Improvements with FreeNAS and 
TrueNAS 
By Mark VonFange 

FreeNAS provides an Open Source storage platform for 

its customers to use in their media environment. TrueNAS 

has additional features that provide extra data security 
with commercial grade support from the developers that 
bring the world FreeNAS. 


successful Story 
<3 <44FreeNAS: a Migration Story 


By Luca Ferrari 
This article briefly summarizes the migration process and 
what advantages the usage of FreeNAS provided. This is 
not a technical article, it is just a “tale” of how the author has 
managed the migration. 


Interview 


= 8 The Interview with Alfred Perlstein, VP of 
Software Engineering at iXsystems 
By Luca Ferrari & BSD Team 
Alfred’s areas of interest have been file systems, multi- 
processor support, performance, and stability of FreeBSD. 
His current role is FreeNAS project manager and VP 
Software Engineering at iXsystems. Recently, he agreed to 
give an interview to BSD Magazine. 


Extras 


<1<44 From Reading to Real Life: Try Out a 
Demo of FreeNAS! 

By Imad Soltani 

Thanks to one of the BSD Magazine contributors you can 

try out what you have read about in this issue. In this article 

you will find all the needed details about the demo host of 

FreeNAS. 


BSD : 


MAGAZINE 


Why I Use 
Free NAS 


| work as a Systems Analyst, and as such | often experiment with different 
operating systems and software. Through the chaos of switching systems around, 
| need to ensure that my personal files are protected. 


A few years ago | was looking to add a network NAS solution, to replace the USB connected hard 
drives | had been using to store my files. | had a spare computer with a couple of hard drives in it, 
so | wanted a solution that could use that hardware. | didn’t want to run a full commercial server 
OS like a Windows or Novell, as | didn’t need all the features of a full server or the bother of the li- 
cense. | started looking for open source options, and found three or four that looked promising. | 
tested all the packages over the next while and eventually decided on FreeNAS. FreeNAS detected 
all the hardware properly during the install and worked properly on the first try. | really liked the web 
interface as it was easy to set up the share for file storage, and to monitor the NAS. | used this for 
file storage and was very pleased with the stability of it. 


A couple years later, | came across a couple of surplussed LaCie NAS boxes. They have 11B of 
storage using a RAID 0 array of four IDE 250GB drives. They are powered with a VIA C3 800Mhz 
processor and had 256MB of RAM which | upgraded to 512MB. They were running Windows 
XP Embedded as the operating system, and had worked well as a Windows file share at work 
for years before being decommissioned. | figured these would make a good file storage system 
for home, but | didn’t want to use the Windows OS that came with them as it could not easily be 
patched. FreeNAS was the logical choice of operating system for me to try, although | had reser- 
vations as to whether or not it would work with the hardware. To maximize the hard disk space on 
the NAS, | decided to install FreeNAS to a 4 GB USB key. As the RAM was limited to the 512MB, | 
went with UFS for the file system, although | would have preferred to use ZFS. | was pleasantly sur- 
orised when FreeNAS detected the hardware, installed and ran without issue. | created a Windows 
(CIFS) share on the NAS and copied my documents there. As RAID O gives me no fault tolerance, 
| set up a second FreeNAS on the other LaCie NAS. | configured RSync to mirror the files from the 
first NAS to the second on a daily basis. 


since I’ve set these FreeNAS systems up, they’ve been solid and dependable. FreeNAS just works 
like itt should, and that’s exactly the security | expect for my files. Being able to repurpose lower end 
hardware into a useful system instead of throwing It out, is an added bonus. 

That’s why | use FreeNAS. 


Eric Geissinger 
Eric Geissinger lives in London, Ontario, Canada and likes to tinker with BSD and Open Source 
software in his spare time. 


BSDCAN 2013 


THE BEST EVENT OF 2013 
http://www.bsdcan.org/ 


Ottawa, Canada 


BSDCan 2013 — The event to be at this year 


BSDCAN 2013 


WHERE 


15-16 May — tutorials 
17-18 May — conference 


WHO 


All who are working on and with 4.4BSD 
based operating systems and related 
projects. 


VENUE 


University of Ottawa 
http://www.uottawa.ca/ 


High value. Low cost. Something for everyone. 


AT FEES YOU CAN AFFORD 


We plan to keep to a minimum. As such, the 
conference will be held at University of Ottawa 
and accommodation is available within the 
University residences. Hotels are also within 
close walking distance of the conference 
venue. 


WHAT DOES IT COST? 


Type CAD 
Individual $195 
Corporate $350 
Additional Corporate $175 
Student $60 
Tutorial (per half day) $60 


University of Ottawa Staff&Student $45 


Take the BSDA Certification exam. 
For details see 
http://bsdcertification.org/ 


¢ ANetBSD based Tracking Radar 

¢ FreeBSD Kernel Security 

¢ Automating the deployment of FreeBSD 
& PC-BSD 

¢ Backup and Restore with Bacula 

¢ Benchmarking FreeBSD 

¢ Switching from Linux to FreeBSD 

¢ DNSSec: Troubleshooting and 
Deployment 

¢ Embedding NetBSD: VOIP applications 

¢ FreeBSD, Capsicum, GELI and ZFS 

¢ FreeBSD Doc Sprint 

¢ FreeBSD storage options 

¢ Hands-on bhyve, the BSD Hypervi 

¢ — Introduction to pkgsrc 

MCLinker BSD 


LET’S TALK 


FreeNAS 
Detachable Storage 
has Come of Age 


While regular readers of this column will appreciate that | am long 
in tooth (the corollary being that | am short in memory) - | still 
remember 8 inch 1.2MB floppy disks that would only hold less 
than 1MB under CPM. 


ing an elderly CPM based word processing system that had 5.25 inch floppy 

drives and an equally mature Enhanced Small Disk Interface (ESDI) hard drive. 
Based on the old ST506/412 interface originally devised by Seagate Technology, in the 
early 80’s ESDI was a common sight for the field engineer. While | cannot remember the 
exact capacity of the drive, it was only double digit Megabytes — if that. After a time ex- 
amining the system, it was clear that the hard disk was either encountering a large num- 
ber of consecutive bad sectors or had suffered a head crash, as the endless “Skip Retry 
Ignore” prompt testified. 

It wasn’t until | moved from the electronics environment to I.T. that | encountered the 8 
inch drives. Attached to some arcane piece of big iron, these drives were well past their 
sell by date as demonstrated by the protective layer of dust that gathered around the 
front bezel and indeed the door handle that was used to secure the floppy disk in place 
and lower the heads onto the media. Oh, how in these days the demons of bad sectors, 
corrupt media, and dirt used to haunt the I|.T tech — a backup floppy with a year or two 
of accounting data could be destroyed by a well aimed fingerprint onto the media itself. 
Saying that, with a scalpel, a sacrificial carcass from a new floppy disk and some indus- 
trial alcohol the data could often be recovered. The old school trick of holding the media 
up against a bright light would allow the technician to see if the drive heads had come in 
contact with the media, and if no light showed through, a gentle clean with a non-abrasive 
lint-free tissue cured the problem. While magnetic drop-outs did occur, more often than 
not physical contamination was the cause of many issues (including dirty drive heads). 

This progression and evolution of floppy media continued through 1.44MB and 2.88MB 
and onwards, until the time came for the hard drive and CDROM drive to become ubiq- 
uitous. | remember a fellow engineer proudly demonstrating his new CDROM drive, and 
commenting on how flawlessly the proprietary software had installed under Windows 3.1. 
Suddenly, attached media had grown up and the availability of an encyclopedia on the 
desktop via this shiny platter (which at the time seemed almost indestructible) was revo- 
lutionary. Yet the concept of quickly expandable mass online storage hadn't really been 
adopted in the commercial environment — yes we had dedicated servers, but these only 
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FreeNAS - Detachable Storage has Come of Age 


handled certain network protocols. If you wanted TCP/IP 
the stack itself was not included in the commercial Oper- 
ating Systems of the time, so you were strictly limited in 
flexibility. 

While the concept of Network Attached Storage (NAS) 
has been available for a long time (the original 3com 
3server originally shipped in 1985), the idea of a sepa- 
rate network appliance didn’t really take off until the late 
90’s. The market up until this point for storage expansion 
was dominated by Direct Attached Storage (DAS). Serv- 
ers were often purchased with plenty of redundant internal 
and slot space for expansion, and adding an additional 
SCSI card and drive combination at a later date was fairly 
trivial. However, this was not always an ideal solution, as 
the server would need to be taken offline for the installa- 
tion of the hardware, and even if the server had an exter- 
nal SCSI interface, hot-plug technology was still a long 
way off in the small / medium sized business sector. 

The first truly innovative device that | encountered was 
the Cobalt Qube, which offered a wide array of function- 
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ality and user interface options. Initially designed to be 
fan-less, the Microprocessor without Interlocked Pipeline 
Stages (MIPS) based architecture only required 20 Watts 
of power to run, but a fan was added due to customer 
expectation that a quality device would require one. Run- 
ning a modified version of Redhat Linux, the device hit 
the streets at $1000. Everything was available via either 
the command line via SSH or Telnet, or a more sophisti- 
cated interface was available via the web interface. This 
is where a NAS based appliance offers great benefits to 
the network administrator — just plug and go, no formatting 
required — just copy your data across if required. 

The big question in the free software community at the 
time was why? With a bit of tuning, any Linux / BSD distri- 
bution could offer this functionality but the unique selling 
point of the Qube was the support and the elegant design 
of both the user interface and the hardware itself. Appeal- 
ing to a market sector that wanted a “plug and play” solu- 
tion was critical, yet it was still just a pre-configured box. 
This is where FreeNAS truly offers the best of both worlds, 
a downloadable ISO for those that want to use custom 
hardware and an appliance for those that just want to plug 
and go. 

The ability to plug in a dedicated appliance via a net- 
work cable and reach it via CIFS, SMB, NFS, FTP, SSH 
or RSYNC blows wide open traditional closed commer- 
cial environments. This is mass storage for the mass- 
es, whether it be the small business, the netizen with a 
large collection of downloads, or as a backup solution. 
As FreeNAS is very light, it is ideal for installing on older 
hardware, and provided the target box has > 6GB of RAM, 
the security and additional functionality of ZFS is available 
facilitating snapshots. 

The bottom line is this — products like the award win- 
ning FreeNAS offer complex functionality driven by prov- 
en technology that is available free to anyone that is will- 
ing to download and install an ISO. As an appliance, the 
FreeNAS mini is also available off the shelf from iXsys- 
tems. That indeed, is technological evolution in action — 
power, choice and flexibility. 


ROB SOMERVILLE 

Rob Somerville has been passionate about technology since 
his early teens. A keen advocate of open systems since the mid 
eighties, he has worked in many corporate sectors including fi- 
nance, automotive, airlines, government and media in a vari- 
ety of roles from technical support, system administrator, de- 
veloper, systems integrator and IT manager. He has moved on 
from CP/M and nixie tubes but keeps a soldering iron handy 
just in case. 
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Which FreeNAS? 


Lessons From a Year in the Trenches with BSD’s Killer App 


| will confess that the TCP/IP stack is truly BSD’s killer app, giving 
us the Internet as we know it but that’s pretty old news and it’s no 
longer the de facto standard. Other contenders for this status are 
OpenBSD’s OpenSSH and Packet Filter thanks to their reach and 
occasionally FreeBSD for setting Internet traffic records. 


able piece of BSD software to the greatest number 

of users is FreeNAS, the open source Network At- 
tached Storage distribution maintained by FreeBSD-ori- 
ented hardware vendor iXsystems. 

Why? For the simple reason that FreeNAS proves it- 
self equally useful to users of Windows, Mac OS xX, free 
and proprietary Unix, VMWare, XenServer, dina appli- 
ances and just about anyone else who has something 
to store. We have developed an insatiable need for digi- 
tal storage and most people probably don't realize how 
fragile their storage infrastructure is until it’s too late. 
FreeNAS stands out from other Open Source storage 
appliances by bringing enterprise-class features to with- 
in the reach of just about everyone with the key feature 
being the ZFS “Zettabyte File System” developed by Sun 
Microsystems. ZFS delivers a level of data integrity pro- 
tection that had previously only been available in high- 
end proprietary solutions. While ZFS is not perfect, it is 
the best all-around Open Source file system available 
today and of course is never a substitute for a rigorous 
backup strategy. 

Sparing you the details, ZFS performs ongoing data 
integrity checks that other filesystems do not and it in- 
cludes institutionalized rollback and replication. By vir- 
tue of having a “clean slate” design, ZFS does require 
some time to wrap your head around but FreeNAS us- 
ers do not need to learn its syntax unless they choose 
to. This is a clue to why FreeNAS is a killer app: you can 
set it up in minutes but it gives you countless layers to 
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explore down to its underlying FreeBSD/NanoBSD op- 
erating system and Django-based web interface. FreeN- 
AS does not yet lend itself to customization but an ex- 
perienced system administrator can migrate a FreeNAS 
configuration to a dedicated FreeBSD server without too 
much trouble. The HUGE advan- 
tage of FreeNAS’ FreeBSD un- 
derpinnings however is the fact 
that diagnosing a FreeNAS sys- 
tem is largely a matter of diagnos- 
ing FreeBSD. With both FreeNAS 
and FreeBSD getting better with 
every release and the introduc- 
tion of the FreeNAS plugins ar- 
chitecture, we are dealing with 
not just an appliance but a plat- 
form with a growing ecosystem. 


Hardware Considerations 
Like just about any BSD, FreeNAS 
will boot on just about any hardware 
but you would be wise to do some 
careful planning in advance and 
be willing to invest a little money. 
The first two golden rules of FreeNAS should 

be obvious: invest in the best hard drives and storage 
controller your budget will allow. The third rule is to invest 
in at least 1GB of RAM, preferably ECC, per TB of desired 
storage. While only time will tell which specific hard drives 
are truly the most reliable, you should avoid the lowest- 
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end consumer drives. Do your homework on the best 
drives currently available and note that some drive mak- 
ers are now offering mid-range drives tuned for NAS use. 

Not to make an endorsement, FreeNAS and FreeBSD 
have long had very good support for LSI controller cards 
and note that you want “Target” or “JBOD” mode when 
using ZFS, allowing ZFS to handle all redundancy fea- 
tures. FreeNAS is not a ZFS-only solution and will in fact 
allow you to create UFS arrays and even share a hard- 
ware RAID array. Each approach has certain advantag- 
es but ZFS’s portability is a very nice feature. It is by no 
means universally portable but ZFS is one of the most 
cross-platform portable file systems available. As for af- 
fordable motherboards that support ECC memory, they do 
exist and you need only do your homework. 


The Weakest Link 
Once you have FreeNAS-ready hardware, there is one 
thing you should know about ZFS to avoid shooting 
yourself in the foot: Your ZFS pool is only as strong as 
its weakest link. A “pool” is a ZFS storage array and 
is fundamentally a RAID O-style “stripe” comprised of 
one or more “vdevs’ or virtual devices. The most com- 
mon type of vdev is ZFS’s “raidzN” which as its name 
implies, is like a traditional RAID array with “N” num- 
ber of failable disks. That is, a raidz1 array can suffer 
the loss of one member disk and two for 
_ = raidz2. While raidz is considered the de 
/ (R) facto strategy for ZFS pools, the cumula- 
| tive nature of the vdev model also means 
that creating RAID 1+0 striped arrays of mir- 
rors is pretty straight forward. To create a 
RAID 1+0 ZFS array in FreeNAS, 
simply configure a mirror of two 
or more drives and add additional 
mirrors to it. This will have the per- 
formance advantage of no relying 
on calculated parity for redundancy. 
Herein however lies one of the great- 
est weaknesses of ZFS: it will allow you 
to add any device, including a USB key as 
a member vdev and removing it will compro- 
mise your entire pool. For this reason you should 
not think of ZFS as a safe way to cobble all of the 
hard drives you have lying around. 

With these rules in mind, FreeNAS is remarkably forgiv- 
ing and quick to set up. A Windows CIFS share can be 
set up in seconds by creating a Volume using the Stor- 
age: Volume Manager followed by Sharing: CIFS Shares: 
Add CIFS Share. Simply enable “Browsable to Network 
Clients” and “Allow Guest Access” and the resulting share 
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should be visible by Windows, Mac OS X and BSD/Linux 
clients. You would be wise to take steps to limit access to 
the resulting system but this starting point will meet the 
needs of most SOHO users. From there the documenta- 
tion is pretty straight forward about setting up more so- 
phisticated shares such as iSCSI targets and NFS shares 
for use by server operating systems like XenServer, VM- 
ware and Microsoft Windows Server. Add in replication 
and you have an open source storage solution that was 
unimaginable just a few years ago. 


The FreeNAS Platform 

It's no secret that some users were upset when the recent 
rearchitecture of FreeNAS temporarily removed some 
home user-oriented features but the remedy is inadver- 
tently taking FreeNAS to a new level. While the develop- 
ers could have simply replaced the missing features, they 
opted to build a plugins architecture that is rapidly gaining 
PC-BSD features such as the PBI package management 
system and Warden jail management system. These two 
features will create countless opportunities for FreeNAS 
as a platform for print, monitoring or database serving 
in addition to the much-requested multimedia serving. | 
can't think of a single Linux distribution or competing NAS 
solution that begins to embrace this platform-centric ap- 
proach. 

With all this going on, the question of “Which FreeN- 
AS?” is turning from one of which demographic will use 
it to identifying one of many FreeNAS systems in a giv- 
en environment. There is simply much more to FreeNAS 
than ZFS and | have even heard of people putting it in 
front of proprietary NAS systems to gain missing file shar- 
ing protocols. Add in a rich set of third party software dae- 
mons through the plugins architecture and the result is 
an unprecedented serving platform that is useful to every 
category of user. 
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What's New 


in FreeNAS 8.x 


This article highlights some of the new features which have 
been added to FreeNAS 8.x since July, 2012. These include 
the Plugins Jail, ZFSv28, and GELI encryption. 


ince its initial release in May, 2011, the newly de- 
S signed FreeNAS 8.x series has added many fea- 

tures that make this open source storage operat- 
ing system an attractive option for everyone from home 
users up to large enterprise users. 

The initial releases concentrated on improving the 
graphical administrative interface and the “core” NAS 
features. These core features include the ability to per- 
form the following within a graphical interface from a web 
browser: 


¢ import existing UFS or ZFS RAID configurations 

¢ import existing disks formatted with FAT, NTFS, or 
EXT2/3 

¢ create volumes, datasets, and zvols 

¢ import existing users, groups, and permissions from 
Active Directory or LDAP 

¢ create Netatalk, NFS, and Samba shares and man- 
age permissions to those shares 

¢ share data over FTP/FTPS, SSH, and TFTP 

¢ create iSCSI targets 

* manage cron jobs, sysctls, and loader.conf values 

¢ manage link aggregations, VLANs, and static routes 

¢ schedule snapshots, replication, scrubs, and S.M.A. 
R.T. tests 

¢ backup the configuration and perform upgrades 
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Subsequent releases added the following major features 
to augment the core NAS features: 


¢ 8.2.0, released in July, 2012, added the Plugins Jail 
to allow for the installation of additional software. 

¢ 8.3.0, released in October, 2012, added ZFSv28. 

¢ 8.3.1, released in March, 2013, added the ability to 
create ZFS pools on GELI encrypted disks. 


In addition to major features, each release incorporates 
bug fixes, new drivers, and minor features to improve 
the usability of FreeNAS. This article discusses some of 
these new features in more detail. 


Plugins Jail 

FreeNAS 8.2.0 introduced the Plugins Jail, which allows 
the FreeNAS administrator to extend core NAS function- 
ality by installing additional applications in order to meet 
the needs of their specific environment. This functionality 
is provided through the following components: 


FreeBSD Jail 

Provides light-weight, operating system-level virtualiza- 
tion. Essentially, it installs a separate FreeBSD system 
onto the FreeNAS host. The jail has its own hostname, 
IP address, user accounts, processes, and configura- 
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tion. The FreeNAS implementation includes vimage, which 
gives the jail its own networking stack and IP broadcasting, 
as these are required by some file sharing applications. 


PBI 

The Push Button Installer format was created by the 
PC-BSD Project to provide a graphical front-end to the 
FreeBSD Ports Collection. Applications can be installed 
and uninstalled from a GUI interface which also pro- 
vides information about which applications and versions 
are installed. PBIs are self-contained in that they include 
all the runtime and library dependencies required by the 
application. 


Plugins 

A FreeNAS plugin extends the PBI format by incorporat- 
ing the installed software, as well as its configuration op- 
tions, into the FreeNAS GUI. This allows the plugin to be 
installed, configured, started/stopped, and uninstalled, all 
from the FreeNAS GUI. Figure 1 shows how the FreeNAS 
Control Services screen indicates that three plugins have 
been installed. Figure 2 shows the configuration screen 
for the Firefly plugin. 

In order to install plugins, the Plugins Jail must first be 
downloaded and installed. If a plugin is not available for 
the needed software, FreeBSD ports or packages can still 
be installed within the plugins jail. The only difference is 
that the installation, configuration, and starting/stopping of 
the application’s service is performed from the command 
line of the jail, rather than from the FreeNAS GUI. 

The Plugins chapter of the FreeNAS Users Guide de- 
scribes in detail how to install and manage the plugins jail, 
install and manage plugins, install and manage FreeBSD 
packages and ports, and how to make custom plugins. 
This chapter is available at http://doc.freenas.org/index. 
php/Plugins. 


ZFSv28 
FreeNAS 8.3.0 added support for ZFSv28. This adds the 
following ZFS features: 


RAIDZ3 

This triple-parity version of ZFS RAID allows up to three 
disks to fail, with no restrictions on which drives fail, with- 
out losing data. 


Replaceable ZIL 

The ZFS Intent Log is effectively a filesystem journal that 
manages writes. You can increase performance by dedi- 
cating a device (typically an SSD or a dedicated disk) to 
hold the ZIL. If the ZIL is installed on a device and that 
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device fails, it can be replaced without losing the pool. 
The only data that is lost is the last few seconds of writes 
which had not yet been committed to the pool. 


zpool split 

This command allows you to split a disk from a mirrored 
pool. Essentially, the pool is cloned to the disk which can 
then be removed and used to recreate that pool on an- 
other system. 


autoexpand 

This ZFS property allows the administrator to replace 
smaller disks with larger disks in order to increase the size 
of the pool. While this is not the recommended way to in- 
crease pool size, it is the only option when the hardware 
does not support adding more disks or controllers. 


ZLE 
Zero Length Encoding is a fast and simple compression 
algorithm which only compresses blocks that are filled 
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Figure 1. Managing Plugins from Control Services Screen 
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Figure 2. Configuration Screen for Firefly Plugin 
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with zeroes. This saves space when a thin-provisioned 
zvol has only used a portion of the size allocated to it. 


Deduplication 

Is the process of eliminating duplicate copies of data in 
order to save space. Once deduplicaton occurs, it can im- 
prove ZFS performance as less data is written and stored. 

These features, including how to enable them and any 
caveats to doing so, are described in more detail in the 
Volumes chapter of the FreeNAS Users Guide: http://doc. 
freenas.org/index.php/Volumes. 

Any ZFS volume created in FreeNAS 8.3.0 or later will 
automatically be formatted with ZFSv28. Existing FreeN- 
AS ZFS pools running ZFSv15 can be easily upgraded 
using the instructions at http://doc.freenas.org/index.php/ 
Upgrading FreeNAS#Upgrading_a_ZFS_Pool. Upgrad- 
ing a pool only takes a few seconds and does not disrupt 
the use of the FreeNAS system. 


Encryption 

FreeNAS 8.3.1, released on March 20, 2013, adds 
FreeBSD GELI disk encryption, allowing a ZFS pool to 
be created on top of the AES-256 encrypted disks. This 
type of encryption is primarily targeted at users who 
store sensitive data and want to retain the ability to re- 
move disks from the pool without having to first wipe the 
disk’s contents. 

The design is as follows: 


¢ This is not the encryption method used by Ora- 
cle ZFSv30. That version of ZFS has not been open 
sourced and is the property of Oracle. 

¢ This is full disk encryption and not per-filesystem 
encryption. The underlying drives are first encrypt- 
ed, then the pool is created on top of the encrypted 
devices. 

¢ This design is suitable for safe disposal of disks inde- 
pendent of the encryption key. As long as the key and 
the disks are intact, the system is vulnerable to be- 
ing decrypted. The encryption key should be protect- 
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Figure 3. Key Management Options for Encrypted Volume 
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ed by a strong passphrase and any backups of the 
key should be securely stored. 

¢ As a backup recovery method (should the pass- 
phrase be forgotten), a recovery key can be used with 
the encryption key to decrypt the disks. 

¢ The encryption key is per ZFS volume (pool). If you 
create multiple pools, each pool has its own encryp- 
tion key. 

e If the system has a lot of disks, there will be a perfor- 
mance hit if the CPU does not support AES-NI. If the 
processor does support the AES-NI instruction set, 
there should be very little, if any, degradation in per- 
formance when using encryption. 

¢ Data in the ZFS ARC cache and the contents of RAM 
are unencrypted. 

¢ Swap is always encrypted, even on unencrypted vol- 
umes. 

¢ There is no way to convert an existing, unencrypted 
volume. Instead, the data must be backed up, the ex- 
isting pool must be destroyed, a new encrypted vol- 
ume must be created, and the backup restored to the 
new volume. 

¢ Hybrid pools are not supported. In other words, new- 
ly created vdevs must match the existing encryption 
scheme. When extending a volume, FreeNAS will au- 
tomatically encrypt the new vdev being added to the 
existing encrypted pool. 


When creating an encrypted ZFS volume, an option is 
available to initialize the disks with random data. This is 
recommended as it writes the disks with random data 
before enabling encryption, which can increase its cryp- 
tographic strength. However, it will take longer for the 
volume to be created. 

Once an encrypted ZFS volume is created, the user 
should immediately set a passphrase on the encryption 
key, make a backup of the encryption key, and create a 
recovery key. Without these, it will be impossible to re- 
import or replace the disks at a later time. Figure 3 shows 
the options for managing the encryption and recovery 
keys which are added to the FreeNAS GUI for managing 
the volume. Details on how to use these options can be 
found at http://doc.freenas.org/index.php/Volumes#Key _ 
Management_for_Encrypted_Volumes. 


Miscellaneous Features 
Some of the other features introduced since 8.2.0 include: 


¢ aweb shell built into the FreeNAS GUI. Clicking this 


opens a root shell to allow for command line manage- 
ment of the FreeNAS system from a web browser. 


04/2013 


BSD Certification 


¢ support for multipath devices on systems containing 
dual expander SAS backplanes, SAS drives, or du- 
al expander JBODs with SAS drives. Such hardware 
will be automatically configured for multipath. 

¢ an autotuning script can be used to set various load- 
er values and sysctls based on system resources and 
installed hardware components. 

¢ a replication window can be set, allowing snapshots 
taken during the day to be replicated during the eve- 
ning. 

¢ improved reporting graphs make it easier to scroll 
through time intervals to monitor performance trends. 

¢ ZFS ARC stats have been added to top(1). 


Additional Resources 
Many resources are available to FreeNAS 8.x users. They 
include: 


¢ the Sourceforge download page: http://sourceforge. 
net/projects/freenas/files/FreeNAS-8.3.1/ 

e the per-release documentation, in various download- 
able formats: http://doc.freenas.org/index.php/Main _ 
Page 

¢ the support page for viewing/creating support tickets 
and feature requests: http://support.freenas.org 

e the user forums: http:/forums.freenas.org 

e the Freenode IRC channel: #freenas 
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The BSD Certification Group Inc. 
(BSDCG) is a non-profit organization 
committed to creating and 
maintaining a global certification 
standard for system administration 
on BSD based operating systems. 


@ WHAT CERTIFICATIONS ARE AVAILABLE? 


BSDA: Entry-level certification suited for candidates 
with a general Unix background and at least six months of 
experience with BSD systems. 


BSDP: Advanced certification for senior system administrators 
with at least three years of experience on BSD systems. 
Successful BSDP candidates are able to demonstrate 

strong to expert skills in BSD Unix system administration. 


@ WHERE CAN I GET CERTIFIED? 


We're pleased to announce that after 7 months of 
negotiations and the work required to make the exam 
available in a computer based format, that the BSDA 
exam is now available at several hundred testing centers 
around the world. Paper based BSDA exams cost $75 USD, 
Computer based BSDA exams cost $150 USD. The price of 
the BSDP exams are yet to be determined. 


Payments are made through our registration website: 
https://register.bsdcertification.org//register/payment 


@_ WHERE CANI GET MORE INFORMATION? 


More information and links to our mailing lists, Linkedin 
groups, and Facebook group are available at our website: 
http://www.bsdcertification.org 


Registration for upcoming exam events is available at our 
registration website: 
https://register.bsdcertification.org//register/get-a-bsdcqg-id 


FreeNAS Plugins 


Everything You Ever Wanted to Know 


In this article, we will look at the FreeNAS plugin architecture from 
the perspective of a programmer, how to develop a plugin, and 


review the transmission plugin. 


What you will learn... 
« How the FreeNAS plugin architecture works 
¢« How to make FreeNAS plugins 


hen FreeNAS entered the 8.x series, many 
VV people were not happy that functionality that 

previously existed was no longer included. 
Such functionality was mainly multimedia focused and 
targeted at the home user. Services such as bittorrent, 
DLNA and iTunes media services are the primary exam- 
ples. Beginning with FreeNAS 8.2.0, a plugin architec- 
ture was introduced. This architecture allows FreeNAS 
systems to be extended in any way that the user sees fit. 
The purpose of this paper is to describe the technical de- 
tails of how the architecture works so that plugin authors 
have the knowledge to create new plugins. As a working 
example, the transmission bittorrent client plugin will be 
reviewed. 

FreeNAS is a very powerful open source operating sys- 
tem based on FreeBSD. However, once you get beyond 
all the great capabilities it offers, your options for extend- 
ing it become limited. Your choices are using FreeBSD’s 
built in package management system, or modifying the 
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What you should know... 
- Basic understanding of FreeBSD 
- Some programming knowledge 


source code and building your own image. Packages can 
be installed using FreeBSD’s package management sys- 
tem, but care must be taken. You must be aware of what 
paths and files the package management system uses as 
well as the package itself. You have to very carefully se- 
lect what is used and where all the files go because once 
the system is rebooted, several key files can be overwrit- 
ten or disappear. 

FreeNAS creates memory disks for /var and /etc at 
boot time and copies the contents of /conf/base/var 
and /conf/base/etc to these file systems. FreeBSD’s 
package tools and ports work with files from /var/db/pkg 
and /var/db/ports. Also, the root file system is mount- 
ed read only. What this means is that when attempting 
to install a package, most files won't be allowed to be 
written to the system and the records in /var/db will be 
erased on boot. This can of course all be circumvented, 
but the point is that it's an involved process to get work- 
ing right. 
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The major problem with using package management is 
that once you do an upgrade, everything you installed will 
get wiped out. Upgrades to FreeNAS only save the con- 
figuration and the volumes that are created, everything 
else is wiped clean. 

The other option is to hack the build system to include 
the packages you want. This is certainly an option. The 
caveat with this is that you must have a FreeBSD sys- 
tem with development tools, an understanding of the 
build system and how it works, knowledge of what files 
to edit, and so on. This simply isn’t feasible for most peo- 
ple. Most FreeNAS users simply aren’t technical enough 
for this. 

To address these problems and more, FreeNAS has in- 
troduced the plugin system. The plugin system is modular, 
self contained and allows everyday users to install pro- 
grams that fit their needs onto FreeNAS from an easy to 
use interface. This also allows users to use their FreeNAS 
system as more than just a file server. 


The Plugins Jail 

In order to install plugins on FreeNAS, a plugins jail must 
first be installed, configured and running. A FreeNAS pl- 
ugins jail is a standard FreeBSD jail packaged as a PBI 
and pre-configured with several necessary packages that 
allow the stock plugins to work. The plugins jail can be 
found in the plugins directory under the FreeNAS release 
directory that is being used. 

To install a plugins jail, you must first upload it. This 
can be done from the web interface under services- 
>plugins. You must specify where the jail will be stored 
temporarily when it’s uploaded. The next step requires 
you to configure a jail path, jail name, IP address, net- 
mask, and a plugins archive path. The plugin jail config- 
uration is stored in the database in the table services 
pluginsjail. The following describes each column and 
what it is used for: 


* jail path — The file system path where the jail 
resides 

* plugins path — The file system path where the 
plugins reside 

¢ jail mac — MAC address for the jail interface (if 
configured) 

* jail ipv4address — The IPv4 address for the jail 

* jail ipv4netmask — The IPv4 netmask for the jail 

¢ jail name — The name of this plugins jail 


Currently, Only a single IPv4 address is supported. In the 


future, multiple lpv4 and lpv6 addresses will be supported, 
as well as multiple plugin jails. 
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When the plugin jail is uploaded and configured, 
pbi_add Is run and the jail is extracted to the jail path + 
jail name. Once this is done, the plugins jail is ready to 
be run. When you turn the service on, /etc/rce.d/ix-jail 
is invoked. 

This script generates the proper /etc/rc.coné lines to 
configure the jail with vnet and allows /etc/rc.d/jail to 
start the jail. Once the jail is up and running, plugins are 
ready to be installed. 


Installing a Plugin 

FreeNAS plugins use the PC-BSD PBI9 format. Plugins 
are installed using the web interface. Installing a plugin is 
very easy, navigate to Services->plugins->Install Plugin. 
When a plugin is installed, the PBI information is stored in 
the database in the table plugins plugins which has the 
following columns: 


lugin version — plugin version number 

gin enabled — enabled/disabled status 

gin ip —fastcgi server IP address 

in port — fastcgi server port 

abil | eee) i386 or amd64 

Mbhoakig peyouk  WSIe SALON RPC API version 

lugin name — name of the plugin 

lugin  pbi_ name — PBI file name as uploaded 

* plugin path — where in the file system the plugin is 
installed 
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Once the PBI information is saved, an OAuth secret and 
key are generated record in the services rpctoken ta- 
ble. This table contains the columns: 


¢ secret — the OAuth secret 
¢ key — the OAuth key 


Once the PBI and OAuth information is recorded in the 
database, the following steps occur: 


¢ The PBI is installed into the plugins jail in /usr/ 
poi sip lugin) sare 

¢ The OAuth key and secret are written into /usr/ 
pbi/${plugin}-${arch}/.oauth 

¢ The plugin information is written into plugins.conf 
which is included by nginx.conf. This tells nginx that 
all URLs that specify the plugin path are to be passed 
to the plugins fastcgi server. 

¢ The plugins control script is started in the jail (/usr/ 
pbi/${plugin}-${arch}/control start). This starts the 
plugin fastcgi server on the IP/port combination re- 
corded in the database. 
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¢ The web interface will refresh. The navtree makes 
a request to the plugins — s/treemenu and treemenu- 
icon methods. The treemenu method returns a de- 
scription of how to display the plugin information in 
the navtree. The treemenu-icon method passes the 
icon for the plugin to the navtree. Once these meth- 
ods are called, the plugin appears in the navtree 
menu under Services—-plugims=- >) plugin with the pl- 
ugin icon. The plugin will also appear under the Ser- 
vices->plugins menu in the main interface. 


How they Work 

When the plugin icon is clicked, django matches the plugin 
URL and sends the request to the plugin fastcgi server. 
Requesting a plugin method is of the form: 


base Uriet)  /plugins/” + s(oluginj 7 {method} 


The methods that are available are: 


* edit — edit the plugin configuration 

* treemenu-icon — Icon to be displayed in the navtree 
¢ — s/treemenu — what/how to display in the navtree 

° — s/start — Start the plugin 

° _s/stop — Stop the plugin 

¢ —_s/status — Status of the plugin 


Plugins have access to the base system via RPC calls. 
All RPC requests are signed with the oauth credentials 
given to the plugin at install time. The following RPC 
methods are available: 


¢ api.version() — get the plugin API version 


* plugins.plugins.get() — get a listing of installed pl- 
ugins 

* plugins.jail  info() — get information about the pl- 
ugins jail 

* plugins.is  authenticated() — test if the plugin Is 
currently authenticated 

iS wMOUnmoOOolmeSs. cet() = get a listing of available files 
systems 


* fs.mounted.get() — get a list of mounted file systems 
* £s.mount() — mount a file system into the jail 

* fs.umount() —UuNnmounta jailed file system 

* £s.directory.get() — get a directory listing 

* f£s.file.get() —geta file 

* os.arch() — get OS architecture 

* api.test() — verify RPC calls are working 


When an RPC request to the base system takes place, 
the following things happen: 
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¢ An RPC request is built of the form: base url + 
plugins icone noc, vil” 

e The RPC request is signed with the oauth credentials 

¢ The RPC request is sent with the requested method 

¢ The method is invoked if the oauth credentials are 
correct and the method exists. The results are then 
returned back to the plugin 


The fastcgi server accepts the plugin request, then 
dispatches accordingly. This allows anything | that 
can communicate the fastcgi protocol to be a plu- 
gin, or even to manage plugins. Because of this flexi- 
bility, plugins can be developed using any language or 
framework one wishes to use. All that is required for a 
FreeNAS plugin to work is that it implement the de- 
scribed methods and be packaged using the PBI9 
format. 


Making a Plugin 
Currently, making a plugin for FreeNAS is somewhat cum- 
bersome. This process is expected to be streamlined in 
coming releases. While there are several methods to cre- 
ate a plugin, the one described was used to develop the 3 
reference plugins included on Sourceforge. 
Documentation for creating PBI files using the PBI9 
format already exists, so only the FreeNAS specific por- 
tions will be covered. Creating a PBI for FreeNAS re- 
quires FreeBSD 8.x, PC-BSD 8.x, or FreeNAS 8.2.0 or 
higher. In all cases, pbi-manager and the ports collec- 
tion must be installed. The basic procedure for creating 
a plugin is this: 


¢ Create plugin directory: myplugin 

¢ Create resource and scripts directories under this di- 
rectory: myplugin/resources and myplugin/scripts 

¢ Create a PBI configuration file: myplugin/pbi.con£ 

¢ Edit the pbi.conf file for your particular plugin. Doc- 
umentation for how to do this can be found at wiki. 
pcbsd.org “PBI Module Builder Guide’. It’s relatively 
straight forward. 

e If there are any pre/post script needs, create the nec- 
essary scripts in the scripts directory as specified in 
the PBI module builder guide. 

e Invoke pbi_ makeport to create the PBI 


At this point, a PBI will have been created. Upload the 
PBI as previously described and it will be installed in- 
to the plugins jail. It will not be functional from within the 
web interface, but it is ready to be worked on from within 
the jail. This process can be repeated as the plugin is re- 
fined and developed. 
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Next, a control script must be created. The name of the 
script must be contro/ and it must be located in the plugin 
directory /usr/pbi/${plugin}-${arch}/. The control script 
takes 3 arguments, an action verb, an IP address, and a 
port. The purpose of the script is to start a fastcgi server 
on the specified IP address and port. 

The verbs that must be implemented are start, stop and 
status. The start verb starts the fastcgi server on the |P/ 
port combination. The stop verb stops the server. The sta- 
tus verb exits with 0 if the server is running otherwise it 
exits with 1. 

This script is called from the main system when the plu- 
gin is enabled or disabled. 

Once the control script is completed, the interface 
portion of the plugin can be worked on. The job of the 
interface is to export the methods needed by FreeN- 
AS to integrate with the web interface as described in 
section 4. 

The start and stop methods must provide a means by 
which to start and stop the binary the plugin is in control 
of. This also includes any modifications to /etc/rc.conf 
if necessary. The treemenu method simply dumps out 
JSON. The treemenu-icon outputs the plugin icon. The 
workhorse of a FreeNAS plugin is the edit method. This 
is the method that presents the interface for configur- 
ing the plugin. This generally entails saving and restor- 
ing state and generating and modifying configuration 
files. 


An Example - Transmission 

When FreeNAS released 8.2.0, three reference plugins 
were also released. They were provided for two reasons: 
to provide the missing functionality that previously existed 
in FreeNAS 7.x, and to document and demonstrate how 
future plugins could be made. 

One of the available plugins is Transmission. Trans- 
mission is a very popular bittorrent client. It's implemen- 
tation is pretty simple and straight forward so it will be 
used for the example. Since Transmission is built in- 
to the build system, the build system configuration will 
be covered as well. Reviewing the build system pro- 
cess for making a plugin is recommended anyhow 
for plugin authors so they have a better understand- 
ing of how everything works. Here is an overview of 
the directory layout and key files for the transmission 


plugin: 
S{freenas}/nanobsd/plugins/ 
This is top level directory for all FreeNAS plugins. All pl- 


ugin files are located in this directory. The build system 
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FreeNAS Plugins 


will be aware of a plugin once it is placed in this directo- 
ry. For Transmission, the following file is created: 


${pluginroot}/transmission 


This is the NanoBSD configuration file for Transmission. 
It sets up the NanoBSD environment for the Transmis- 
sion build and provides function(s) for doing so. Since 
NanoBSD is being used for the plugin build, a bit of trick- 
ery is done here. All of the NanoBSD functions are over- 
ridden with stub calls except the last _ orders ) function. 
This is the function that makes the actual call to pbi_ 
makeport and does the plugin build. 


2 pluginBocn teamcmiss ion pbi/ 


This is the Transmission PBI directory. All plugins must 
have a PBI directory. Within this directory, two subdirec- 
tories must exist: scripts/ and resources/. A pbi.conf file 
must also exist. 
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This file tells pbi-manager how to build Transmission. It 
contains information about the plugin such as the port(s) 
to be built, the icon(s) to be used, the make options for 
the binaries, etc. 


S{transmission pbi}/resources/ 


This directory contains the bulk of the plugin interface. 
It can be structured however the plugin author chooses. 
Since Transmission uses django, the django application 
resides in the directory along with an assortment of oth- 
er scripts and programs. 


${transmission pbi}/resources/control.py 


This is the transmission fastcgi server control program. 
As discussed previously, this program has three re- 
sponsibilities: to start the fastcgi server, stop the fastc- 
gi server and report the status of the fastcgi server. The 
start and stop methods also start and stop the django 
web server application. The django application exports 
all the required hooks that FreeNAS requires to inter- 
face with the plugin. A wrapper script that calls control. 
py is also in this directory. This “control” wrapper is the 
only mandatory file that needs to be known by the base 
system. 


2{ transmission poi}/ transmission 
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This is the RC script for transmission that controls the 
daemon. It’s just like any other RC script that FreeNAS 
uSeS. 


S (Cams SSM jer) / Kesouieces eis —Kecomit 


The job of this script is to modify /etc/rc.conf to enable or 
disable transmission. 


SA eSunIS MLSS suCig jeloul | / SiC1e |S Le 


This directory contains hooks for different stages of the 
PBI build process and installation process. The pos- 
sible scripts ale pre-incstall sh, eost—maceallrysh, pre— 
portmdake. shy soest-poremake. sh and pre-remove.sh. Pre- 
install.sh allows you to do customizations to the sys- 
tem prior to the plugin being installed, such as adding 
users and groups. Post-install.sh iS run immediately af- 
ter the plugin is installed. Some typical post install op- 
erations are database initialization and migrations. Pre- 
portmake.sh and poOst-portmake, sh allow you to do Opera- 
tions before and after port compile. Pre-remove.sh IS run 
prior to plugin removal. Operations typically done by pre- 
remove.sh are user and group removal. 

The other files in S{transmission pbi}/resources are 
default.ong, freenas and transmissionur. Default.png is 
the default icon for the PBI. Freenas is a file that contains 
the plugin api version. Transmissionur IS the django ap- 
plication. 


S{transmission ui}/freenas/ 


This is the django application. Under this directory are 

the typical django model, form, view and url files. In the 

urls.py file, the exported methods that FreeNAS re- 

quires are very visible and demonstrate what needs to 

be made available for a FreeNAS plugin to be functional. 
To build the transmission plugin, run the command: 


ey eeeenacny uae dowbuild sh —t plugins/ transmission . 


This will first create a s{freenas}/sbin directory and in- 
Stall pbi-manager into it. When Pot iakepore is Invoked, 
it will compile a FreeBSD 8.x world and install it into a 
temporary directory which will later be tarred up and 
saved for future compilations. Once a world directory is 
ready, the ports that are needed to compile the plugin 
get compiled and installed. Any provided scripts get ran 
and then the PBI is made and placed in s{freenas}/${pl 
ugin}/${arch}/${plugin}.pbi. The plugin build is complete 
at this point. 
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On the Web 


http://www.freenas.org/ —- Download FreeNAS 
http:/wiki.freenas.org/index.php/Main_Page — FreeNAS Doc- 
umentation 


To test and verify transmission works, upload the Trans- 
mission plugin through the FreeNAS web interface as 
previously described. Navigate to Services->plugins- 
>Transmission from the navtree. Click on it and there 
should be an edit screen. There are default values filled 
in already but these can be modified and saved. Save the 
configuration and go to Services->plugins->Transmission 
from the main interface and turn the slider to on. At this 
point you can grab any torrent file, place it in the directory 
specified in the watch directory and watch it get down- 
loaded in the download directory. Success! 


Conclusion 

FreeNAS plugins allow FreeNAS to be extended in ways 
anyone sees fit. They are very powerful in their flexibil- 
ity and allow plugin authors to make a FreeNAS system 
into everything from a multimedia server to a print server. 
The purpose of this paper is to explain the plugin architec- 
ture so that more developers and people knowledgeable 
enough can make more plugins. Happy hacking! 


JOHN HIXSON 
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Handmade NAS 


In the past, the term Network Attached Storage (NAS) 

used to be associated with large, expensive networks and 
luxurious, enterprise-grade fileservers. At the time, who 
would have thought that hard disk and RAM would become 
a common commodity that regular folks like us would 


possess? 


What you will learn... 
- Basic file sharing with SMB, AFP, and FTP server 
« Use these as building blocks for a full-fledged NAS 


ith the well-known FreeNAS distribution, 
\J\f isin a multi-terabyte NAS seems to be 
a trivial affair. But today, we’re going to talk 
about how to build a NAS by hand, plugging different 
components together using the command line and Free- 
BSD. This article does not aim to be a comprehensive 
guide to building a NAS. Rather, it serves as a jumpstart 
guide on the basic components that make up a NAS, 
which the reader can expand on and enrich with more 
features. 
The components of the NAS we're going to build 
include: 


¢ FreeBSD server — setup with ZFS as root filesystem 
using mirroring configuration 

¢ Samba -— file server targeting Windows client 

¢ AFP through Netatalk — file server (with Time Ma- 
chine) targeting Macs 

¢ FTP server — generic file sharing server 

¢ pf-— packet filtering as firewall 


Scenario requirements for this guide: 
¢ modern Intel / AMD processor 
¢ atleast 2GB of RAM 


¢ atleast 2 hard disks 
¢ megabit NIC or better 
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What you should know... 
¢ FreeBSD installation 

- Network configuration 

¢ Port installation and configuration 


Disclaimer 

This guide is a walkthrough on setting up a NAS and it 
WILL destroy your existing data on the hard disk. You 
have been warned. 


FreeBSD Server Setup 

As of this writing, the FreeBSD default installer does not 
support ZFS filesystem layout. As such, we'll have to hand 
craft the ZFS layout during the installation of FreeBSD 9.1 
server. This will allow us to learn more about the underly- 
ing workings of FreeBSD root on ZFS filesystem. 

First of all, get the installation CD from http://freebsd.org 
and boot it. Perform the installation as usual. Under the 
menu “Partitioning”, choose “Shell”. 

After dropping to the shell, execute the following com- 
mands: Listing 1. 

Type exit at the command prompt once the above is do- 
ne. The installation should continue, extracting the neces- 
sary files to the hard disk. What the above does is create a 
GPT partition table in the very first step. Then follow this up 
by creating a boot partition of 128 kilobytes and a swap par- 
tition of 4 gigabytes (based on 2GB RAM). The rest of the 
hard disk space Is allocated to the data area, root partition. 

After the partitioning of the hard disk is done, initialize 
the boot area with boot code found in /boot/gptzfsboot. 

The same disk layout is duplicated to the second hard 
disk in order to create a ZFS mirroring disk setup. 
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Next, create a ZFS pool with the name of “zeetank’, 
consisting of the partitions “primary-root” and “secondary- 
root” with ZFS mirroring. Then create a mount point to 
hold the root partitions and set the boot partitions to find 
“zeetank/root” for necessary booting files. Finally, list the 
disk layout we just did and double check tt. 

lf a typo or a misconfiguration of the disk layout occurs, 
use the following commands for disk partition to delete 
and/or destroy: 


# gpart delete -i 1 dad 
# gpart destroy da0 


The completed disk layout should look like this: Listing 2 
and Listing 3. 

For more disk redundancy setup on ZFS, you should 
refer to the FreeBSD Handbook. The ZFS Administration 
Guide from the Solaris Project can also serve as a good 
reference (see Reference for links). 

The installation should resume after “exit”. Proceed 
as you would install FreeBSD normally. For example, 
set your root password, configure the network interface, 
set up the time zone, and etc. When the menu “Man- 
ual Configuration” appears, choose “No”. On the next 
menu, “Complete”, choose “Live CD” instead, because 
there are still a couple of files we need to set up. Do take 
note that the root partitions that we created earlier, are 
mounted on /mnt. 

Log in as root (it should not prompt for password in “Live 
CD” mode) and execute the code from Listing 4. 

The lines with “echo” are the necessary ZFS startup pa- 
rameters FreeBSD needs to know. Next, copy the ZFS 
cache file onto the mounted file system in order for ZFS 
to boot properly: see Listing 5. List the ZFS properties to 
make a visual check. Reboot when finished: 


# zpool get all zeetank 
# reboot 


After reboot, log into the box and set yourself as root. 
Fetch and extract the ports tree as necessary. 

Then create a user named “bob”, so that we can log 
into the file sharing services that we’re going to set up. 
Since this user is just a common user accessing files 
through various services, we should prevent it from log- 
ging into the system through any shell. This will be cov- 
ered in the section setting up FTP server later. For now, 
create the user: 


www.mtier.org 
contact@mtier.org 


# pw useradd -mn bob 
# passwd bob 
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Listing 1. FreeBSD root on ZFS 


gpart create -s gpt da0 


Se SF SF SF SF 


1 dad 


gpart create -s gpt dal 


Se S= SF S$ SE 


ideal 


pate add —— Preebsd-book -s7lvs =| pramary-pooe dal 
gpart add -t freebsd-swap -l primary-swap -s 4g da0 
Gpare ade) —u itreehsd=zis —l primary—-root dal 

Gpakt bootcode |-b 7 boot, pmb —p (beet; qotzrcboor, 1 


gpart add -t freebsd-boot -s 128 -l secondary-boot dal 
gpart add -t freebsd-swap -l secondary-swap -s 4g dal 
Qpert ada —t freebsd-zis -l Secondary—-roor dal 

efselici. leer Io /loerein joules = /loeleiey ciciicSloeiein <1. 


# zpool create -f -m none -o altroot=/mnt -o 


cachefile=/tmp/zpool.cache zeetank 
MireOr eGpc/ primary Looe. cp, 
secondary-root 


# zfs create -o mountpoint=/ zeetank/root 


# zpool set bootfs=zeetank/root zeetank 


Pee Manet 
# zpool get all zeetank 


Listing 2. Sample of partition layout 


root@handmade-nas:/root # gpart show 


=> 34 20971453 
34 Zs 

GZ 1048576 

MO437 238° 19922749 

=> 34 20971453 
34 128 

eZ 1048576 

048736) 199722749 


Listing 3. Sample of ZFS setup 


da0 


Gel 


freebsd-boot 
freebsd-swap 
freebsd-zfs 


Gee 


freebsd-boot 
freebsd-swap 
freebsd-zfs 


(10G) 
(64k) 
(512M) 
(eG) 


(10G) 
(64k) 
(512M) 
(ee) 


root@handmade-nas:/root # zpool get all zeetank 


NAME PROPERTY VALUE 
zeetank size 9.44G 
zeetank Capacity 0% 
zeetank altroot /mnt 
zeetank health ONLINE 
zeetank ejolaliel IVAITEISL 7 OG45 99296 
zeetank version 28 
zeetank @@iens zeetank/root 
zeetank delegation on 
zeetank autoreplace OFF 
zeetank cachefile /tmp/zpool.cache 
zeetank failmode wait 
zeetank lisSesmapsiOus Orr 
zeetank autoexpand O£f 
zeetank dedupditto 0 
zeetank dedupratio ie OO 
zeetank free 9.44G 
zeetank allocated SNS 
zeetank readonly Of r 
zeetank comment = 
zeetank expandsize 0 


SOURCE 


default 
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Samba File Server 

The Samba server that we’re going to configure is meant 
for Windows client file sharing. First, install the port “net/ 
samba36’. For example: 


# make -C /usr/ports/net/samba36 install clean 


The Samba authentication we are going to use stores 
information in a trivial database. The password files 
holding user credentials are passdb.tdb and secrets. 
tdb, which are located in /usr/local/etc/samba/. Edit the 
file /usr/local/etc/smb.conf with the contents showed 
In Listing 6. 

Add a user to the Samba trivial database: 


# pdbedit -au bob 
Next, start Samba services: 


# echo ‘samba enable="YES”' >> /etc/rc.conf 


# service samba start 


If all is well, the Windows client will be able to access the 
share named “bob” on this box. 


AFP Through Netatalk 

Macs can share files and back up using Time Machine 
with Apple Filing Protocol (AFP) through the Netatalk file 
sharing service. 

Before starting, install the port “net/netatalk” and un- 
check the option “ZEROCONF” unless you want to use 
the Bonjour function through zeroconf. There will be a few 
files we will need to create/edit: 


° /usr/local/etc/AppleVolumes.default 
° /usr/local/etc/afpd.cont 
e /usr/local/etc/netatalk.conf 


e /f/etc/re.conf 


Create the file /usr/local/etc/AppleVolumes.default with 
the following contents: 


:DEFAULT: options:upriv,usedots 


/nome/bob “bob’s home directory” allow:bob options:tm 


The file AppleVolumes.default tells Netatalk that the 
share /home/bob can only be shared with user “bob” and 
that the “Time Machine” function is available with the 
share. 

Next, create the file /usr/local/etc/afpd.conf with 
these contents, which is only a SINGLE line: 
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=~ =lpaddr 0.0.0.0 echo ‘afpd enable="YES”’ >> /etc/rc.conf 
echo ‘atalkd enable="NO”’ >> /etc/rc.conft 
This basically tells afpd to listen for incoming requests 
in all network interfaces. Next, create /usr/local/etc/ 


netatalk.conf with the below contents: 


echo ‘cnid metad_ enable="YES”’ >> /etc/re.conf 


He HEHE =H 


echo ‘netatalk enable="YES”’ >> /etc/re.conf 


That's all for the Netatalk service. Start the service by: 
ATALK NAME=NAS box afp 
# service netatalk start 


The settings in netatalk.conf should be pretty self-ex- 


planatory to set up the hostname for Netatalk service. Remember to check /var/log/messages for error mes- 
sages. The Mac clients should be able to browse this 
Finally, set rc parameters in /etc/re.conf: server for AppleTalk shares and use this share for 


Listing 4. ZFS rc script values & file system parameters 


echo ‘zfs enable="YES”’ >> /mnt/etc/rc.conf 

echo ‘zfs load="YES”’ >> /mnt/boot/loader.conf 

echo ‘vfs.root.mountfrom="zfs:zeetank/root”’ >> /mnt/boot/loader.conf 
echo ‘/dev/da0p2 none swap sw 0 0’ >> /mnt/etc/fstab 

echo ‘/dev/dalp2 none swap sw 0 0’ >> /mnt/etc/fstab 


Se SF SF SF SF 


Listing 5. ZFS cache 


# zpool export zeetank 
# zpool import -o altroot=/mnt -o cachefile=/tmp/zpool.cache zeetank 
¢ ep /tmp/ Zpo0o0l cache 7mnt/boot/2tc,/ 


Listing 6. smb.conf 


[global] 
workgroup = Private 
MSTIOLOS Welle = WAS loex silo 
security = user 
encrypt passwords = yes 
client lanman auth = no 
log file = /var/log/samba/log.%m 
passdb backend = tdbsam 
load printers = no 


printcap name = /dev/null 


[bob] 
path = /home/bob 
browseable = no 
writeable = yes 
valid users = bob 


admin users = bob 


Listing 7. ftpd chroot 


Com Som, Nolegine Wer local) bin fue login only 

echo. /uer) locally) bin, ftip-legin—-only” > 7ete/chelllc 

mkdir /home/bob/ftpdir 

Dw Wsermode—0 bebe -d."/home/ bob) BLodit) = 7s. len local bin iup-login—omiy” 
een “bob” 22> /etc, Eupenroor 


Se SF S$ SF SF 
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Time Machine backups if there are no error messages 
logged. 


FTP (File Transfer Protocol) 

The FTP server we are going to configure will be used for 
general file uploading and sharing. We will be using the 
FTP daemon that comes with the FreeBSD base installa- 
tion, ftod. We'll also restrict ftp user login to its home direc- 
tory, effectively chroot-ing the user. 

During the creation of user “bob” earlier, the default 
shell was assigned as /bin/sh, which allows the user to 
login using a shell. In order to restrict the user login to ser- 
vices we have configured (Samba, Netatalk, and FTP), 
we should disable its login capabilities. For this purpose, 
do the following: Listing 7. 

The above will duplicate a copy of the nologin shell 
from base and list it in /etc/shells so that ftpd will rec- 
ognize it. Take note of the separator ~/./” as this will tell 
ftod where to set the “root” directory structure of the us- 
er and effectively prevent the user from going beyond / 
home/bob/ftpdir. Next, start the FTP daemon with: 


# echo ‘ftpd_ enable="YES”' >> /etc/rc.conf 
# service ftpd start 


The FIP daemon will log its messages to /var/log/ 
xferlog by default. 


Packet Filter — pf 

pf is an OpenBSD firewall that has been ported to the base 
system of FreeBSD since version 5.x. It is well known for its 
features, performance, and simple syntax. For these rea- 
sons, we will use it to add another layer of security to the ser- 


Listing 8. /etc/pf.conf 


SSW LOSS eC Oe 21, 2a, Se a Sais |e 


Sievers Melo) MS i, Mars 
edlaveiies som ILS ots SIS 1 I Gres Shit IE | 


lollereeatigi oak Ib 
bicck out ell 


eis) elle! < Toi how) el 


pass in inet proto icmp all icmp-type echoregq 


Paco Prove) veps tom [Clvchrse lp LO POLE och vleccmrce 
Pace i prorenUdpy trom: 06 Licitomlhe UOmpomr com ulccomucdp 
# for ftpd to work properly 

Seles Glin joIOIde) Ice) stem Gelieiice io ce joemie 2 ASI 
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vices configured above. Put the following into /etc/pf.conf 
(Listing 8). The pf rules above allow the IP in sclients ip to 
access the services listed in sservices tcp and $services_ 
udp. It also allows pings from all IPs for troubleshooting pur- 
poses. Loopback interface (lo0) checks will be skipped and 
on default will “block” both inbound and outbound traffic if 
no rules are matched. Now, you can start up packet firewall: 


# echo ‘pf enable="YES”'’ >> /etc/rc.conf 


# service pf start 


Summary 

This wraps up the guide on how to set up a NAS by hand 
and configure the services. The configurations shown 
above are the bare minimum and the purpose of this 
guide is to help someone interested in setting up a NAS 
by poking around the system. More reading should be do- 
ne and care should be taken in securing the services. Of 
course, the configurations in this article can certainly be 
altered to provide more features. For example, Samba 
and Netatalk users can be authenticated with LDAP in the 
backend. The feature-rich ZFS filesystem has barely been 
touched — just to mention a few: various disk redundancy 
(mirror, striping with parity) configurations, file Compres- 
sion, and filesystem snapshot. The FTP daemon is ca- 
pable of virtual-host-like hosting and pf is a full-fledged, 
feature-rich firewall. There is so much to talk about. | hope 
this guide serves a good purpose and provides a picture 
of how a NAS can be built. Below are some links for refer- 
ence. Have fun. 


EDWARD TAN 

Edward Tan’s day-to-day job is administrating a bunch of serv- 
ers running on FreeBSD. In his free time, he blogs about techie 
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FreeNAS 


In an Enterprise Environment 


By the time youre reading this, FreeNAS has been 
downloaded more than 5.5 million times. For home users, it’s 
become an indispensable part of their daily lives, akin to the 
DVR. Meanwhile, all over the world, thousands of businesses, 
universities, and government departments use FreeNAS to 
build effective storage solutions in myriad applications. 


What you will learn... 

¢« How TrueNAS builds off the strong points of the FreeBSD and 
FreeNAS operating systems 

« How TrueNAS meets modern storage challenges for enterprises 


the public and offers thorough documentation, an 

active community, and a feature-rich platform for 
the storage environment. Based on FreeBSD, FreeNAS 
can share over a host of protocols (SMB, CIFS, AFP, NFS, 
FTP, iSCSI, etc) and features an intuitive Web Interface, 
the ZFS file system, a plug-in system for applications, and 
much more. 

Despite the massive popularity of FreeNAS, most people 
aren't aware of its big brother dutifully storing and protecting 
data in some of the most demanding enterprise business 
environments: the proven, enterprise-ready, and profes- 
sionally-supported line of appliances known as TrueNAS. 

But what makes TrueNAS different from FreeNAS? 
Well, I'm glad you asked... 


Ty he FreeNAS operating system is freely available to 


Commercial Grade Support 
When a mission critical storage system goes down, an 
organization’s whole operation can come to a screeching 
halt. While community-based support is wonderful (and 
free), it can’t always get an ailing storage server back up 
and running in a timely manner. Businesses need the re- 
sponsiveness and expertise that only a professional, dedi- 
cated support team can provide. TrueNAS storage appli- 
ances provide that safety net. 

Created by the same technical team at iXsystems that 
developed FreeNAS v8 for the home user, TrueNAS is 
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What you should know... 

- Basic understanding of server technology 

« Some networking knowledge 

« Some knowledge of BSD Operating Systems 


intended to be a “FreeNAS” for the enterprise business, 
complete with around-the-clock support from that very 
same team. For customers, a support team with direct 
insight into the base operating system is crucial, saving 
wasted hours spent investigating possible Known issues 
or configuration missteps. With decades of combined ex- 
perience in both FreeBSD and enterprise storage soft- 
ware, the TrueNAS Support Team at iXsystems know the 
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System Information 
Hostname freenasoc al 
Build FreeNAS-8.3,1-RELEASE.x64 (r13421) 
Platform Intel(R) Coreq Te ie 2L00T CPU @ 2.0GHz 
Memory BOSSMB 


System Time Mon Mar 11 03:36:34 POT 2013 


Uptime S364K wp 9 ming, 0 ers 


Load Average 0.00, 0.15. 0.12 


be Connected through 192.168.1790 


Figure 1. System Information page of the FreeNAS WebGUI 
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Using FreeNAS in an Enterprise Environment 


ins and outs of configuring storage in virtually any envi- 
ronment, while also possessing intimate knowledge of the 
underlying operating system. 

The production environment is the heartbeat of every 
organization, designed to serve customers and employ- 
ees around the clock. TrueNAS appliances help organi- 
zations achieve this goal. With software support available 
24x7, service models with guaranteed response times, 
and a web-based support system, TrueNAS covers all the 
bases. But the advantages don't stop there. 


Enterprise Features 

FreeNAS is designed as a storage solution for any envi- 
ronment and is used in a wide variety of institutions and 
organizations. For the enterprise user though, not having 
experienced UNIX or FreeBSD administrators on hand 
can provide some challenges. TrueNAS does the work to 
provide additional enterprise features in a qualified stor- 
age appliance: 


¢ High availability (active/passive failover) 

¢ Automatic read cache management and protected 
write log 

¢ Robust, purpose-built hardware platform 

¢ Automated hard drive removal/replacement & hot 
spare capability 

¢ Integrated remote management and monitoring 

¢ Tuned for 10Gb Ethernet performance (up to 40GbE) 

¢ ZFS tuning for enhanced storage performance 

e Mirrored boot device support 

¢ /swap on flash-based boot device instead of on pool 
components 

¢ Integrated support module 

¢ Enhanced graphical reporting module 

¢ Qualified for VMWare, Citrix Xen, and Hyper-V 


With its purpose-built hardware platform, TrueNAS lever- 
ages enclosure management through the integration of 
SCS/ Enclosure Services (SES), which allows a techni- 
cian to quickly and easily identify which drive in the hard- 
ware enclosure is failing. Having a hard drive fail with- 
out this can be the source of maintenance confusion and 
frustration. While integrating this feature into FreeNAS 
isn't easy due to the need for multi-platform compatibil- 
ity, TrueNAS makes swapping hard drives a straightfor- 
ward operation. 

One serious point of failure in standard storage con- 
figurations is if a head unit goes down, all of the stor- 
age becomes inaccessible. This can result in serious 
disruptions of day-to-day operations, costing time and 
money. TrueNAS offers protection through its high 
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availability feature with active/passive failover, giving 
organizations a way of avoiding downtime with dual- 
node head units. 

Along with the greater fault-tolerance and robust hard- 
ware platform, TrueNAS appliances bring several other 
features and performance enhancements to the enter- 
prise data center: built-in remote management, stor- 
age tiering through integrated high-performance flash- 
based read and write cache, mirrored boot devices, 
NFS support, as well as 10GbE and ZFS performance 
enhancements. TrueNAS also comes with all the fea- 
tures FreeNAS already provides and is based on the 
FreeBSD operating system, which is renowned for its 
stability and security. 


Secure, Robust Storage with the ZFS 

When it comes to modern file systems, there is none 
more flexible or powerful than ZFS, the file system at the 
heart of both TrueNAS and FreeNAS. Originally devel- 
oped by Sun MicroSystems, ZFS was forged around the 
major tenets of storage: data integrity, security, flexibility, 
and scalability. With multiple data integrity checks, ZFS 
is structured so that each block of data has independent 
checksums. The filesystem utilizes this Copy on Write 
(CoW) transactional model to organize these blocks in 
a tree system where each block contains its “children’s” 
checksums, creating a self-validating storage pool from 
the top down. 

ZFS also comes with powerful performance-enhancing 
features. First, it supports read and write caching, which 
allows for tiered hybrid storage. This means that the sys- 
tem can utilize high performance SAS and SSD drives 
(or other flash-based storage) in conjunction with high 
capacity storage drives to optimize storage pool perfor- 
mance. Most workloads can leverage the performance 
benefits of storage tiering, though tests have shown per- 
formance increases of 8x to 23x under certain workloads 


Figure 2. System Information page of the TrueNAS WebGUI! 
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than without the cache (https://blogs.oracle.com/bren- 
dan/entry/test). 

As part of the hybrid and tiered storage feature, ZFS 
increases performance through its Most Frequently 
Used (MFU) and Most Recently Used (MRU) caching 
algorithms which categorize data by date and usage, 
allowing prioritization of the system’s resources. Active 
data will be first in the queue for RAM and caching de- 
vices, minimizing the need to access slower spinning 
disks. 


Qualified Bill of Materials, Tested Features 
TrueNAS is specifically designed around its own hard- 
ware platform, which allows for tightly-integrated and 
platform-specific functionality that cannot perform on dis- 
parate hardware. Also, since the software development 
team uses TrueNAS qualified hardware during their cod- 
ing, that further ensures that the hardware and software 
function in harmony. Users get the convenience of a full- 
fledged appliance that saves them the trial and error pro- 
cess of assembling one from scratch. 

Since the system operates on professionally qualified 
hardware, it’s easier to pinpoint the source of any issues 
that may arise. Any bug fixes and issue escalations are 
brought directly to the TrueNAS team. This open line of 
communication also gives the user the power to influ- 
ence the development roadmap. Today’s bugfix is tomor- 
row's patch! 


Based on Open Standards 

TrueNAS is an enhanced version of FreeNAS and is 
ultimately based on FreeBSD. This means that FreeN- 
AS runs on open standards and provides the user with 
benefits over closed, proprietary alternatives. Both the 
FreeNAS and FreeBSD projects have active communi- 
ties, large user bases, and thorough documentation. By 
extension, TrueNAS users enjoy these benefits as well. 
There are thousands of people downloading the new- 
est versions of FreeNAS every day and testing out its 
features on a daily basis. This ensures that only mature, 
tested features are rolled into TrueNAS’s codebase. As 
FreeBSD and FreeNAS improve and evolve, so does 
TrueNAS. 


A Complete Unified Storage Offering for the 
Enterprise 

All of these factors converge to make TrueNAS an inte- 
grated hardware and software solution that is all at once 
reliable, powerful, and highly scalable. By utilizing hybrid 
storage with tiered caching, TrueNAS outstrips standard 
spinning disk storage configuration performance by or- 
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ders of magnitude. The intuitive web interface puts power- 
ful tools at the user’s fingertips for a wide range of storage 
functionality. TrueNAS takes the guesswork out of storage 
and comes supported by the team of professionals that 
brings the world FreeNAS, providing a complete unified 
storage solution for the enterprise environment that you 
can rely on. 

lf you want to utilize “FreeNAS” in an enterprise envi- 
ronment, TrueNAS delivers a time-tested product backed 
by a team of top-notch BSD developers. Whether it’s for 
primary or secondary storage, FreeNAS’s robust feature 
set, combined with proven hardware configurations, allow 
TrueNAS to meet the needs of businesses and organiza- 
tions. And now you know. 


MARK VONFANGE 

Mark VonFange is the Professional Services Manager at iXsys- 
tems, providing oversight and coordination of its FreeBSD, PC- 
BSD, and FreeNAS support and development services. The Pro- 
fessional Services Team provides services ranging from mission 
critical support to software and firmware development to pri- 
vate consultation. Mark also develops internal and external doc- 
umentation for division sales and marketing. 


ANNIE ZHANG 

Annie Zhang works in the marketing department at iXsystems. 
She started using open source software during her sophomore 
year at Wellesley College. Since then, she has increasingly relied 
on Open Source products; she appreciates the security, flexibility, 
interoperability, and of course, price. 
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NET SERVICES IS AN APPLICATION HOSTING COMPANY FOCUSED 


ON OPEN SOURCE APPLICATIONS MANAGEMENT IN HIGH AVAILABILITY ENVIRONMENT. 


NET OPEN SERVICES IS PROUD TO PROVIDE A HIGH QUALITY SERVICE TO OUR CUSTOMERS SINCE 10 YEARS. 
OUR EXPERTISE INCLUDES: 


(OPENSTACK, CLOUDSTACK, RED HAT ENTERPRISE VIRTUALIZATION) 
REMOTE MONITORING AND MANAGEMENT 24/7 


NETWORKING AND SECURITY = 
(OPEN BSD, IP TABLE, CHECKPOINT, CISCO...) 


OS AND APPLICATION MANAGEMENT 
(FREE BSD, OPEN BSD, SOLARIS, UNIX, LINUX, AIX, MS WINDOWS) 


DATABASE MANAGEMENT _ ron ante 
(ORACLE, MYSQL, CASSANDRA, NOSQL, MS SQL, SYBASE...) 


MANAGED HOSTING IN CARRIER CLASS DATA CENTERS 
DISASTER RECOVERY 


CLOUD COMPUTING, PUBLIC, PRIVATE AND HYBRID CLOUD MANAGEMENT | 


Net 


SERVICES 


WE PROVIDE SERVICES IN EVERY STEP OF THE PROJECT LIFE, DESIGN, DEPLOYMENT, MANAGEMENT AND EVOLUTIONS. 
NETOPENSERVICES TEAM INCLUDES EXPERIENCED LEADERS AND ENGINEERS IN THE INTERNET SERVER INDUSTRY. 


QUR TEAM HAS 15 YEARS OF EXPERIENCE IN DEVELOPING INTERNET INFRASTRUCGTURE-GRADE SOLUTIONS AND PROVISIONING INTERNET 
DATACENTERS AND GLOBAL SERVICE NETWORKS TOGETHER. 


WE OFFER EXCEPTIONAL HARDWARE SUPPORT AS SOFTWARE SUPPORT ON UNIX/LINUX AND OPEN SOURCE APPLICATION. 


NETOPENSERVICES DELIVERS THESE CUSTOM-BUILT LINUX AND UNIX SERVERS, AS WELL AS PRECONFIGURED SERVERS AND SCALABLE STORAGE 
SOLUTIONS, TO OUR CUSTOMERS. WE ALSO OFFER CUSTOM DEVELOPMENT AND ADVANCED-LEVEL UNIX/LINUX CONSULTING SOLUTIONS. 


WWW.NETOPENSERVICES.COM ¢ CONTACT@NETOPENSERVICES.COM 
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Creative Integrations 


Workflow Improvements with FreeNAS and TrueNAS 


“We've deployed FreeNAS and TrueNAS at several client 
locations. The visual effects people are loving the TrueNAS 


system and how easy it is to manage.” 


- Tim Nagle, Owner of Creative Integrations 


C reative Integrations is a full service engineering/ 
integration firm that specializes in post-produc- 
tion, recording, animation, and broadcast facili- 
ties. With over a decade of experience, Creative Integra- 
tions helps their clients design, improve, and streamline 
workflows. 

The company is owned and operated by Tim Nagle, with 
experience on many sides of the industry from engineer- 
ing, production, post-production, music and broadcast all 
over North America and Europe. Creative Integrations of- 
fers a proactive, technical view of the landscape custom- 
ers are faced with and works with clients to find the most 
effective, economical solutions available in the current 
marketplace. With offices in Dallas, TX and New York City, 
NY, Creative Integrations is positioned to fulfill the needs 
of any project on schedule and on budget. 


The Storage Challenge 

Tim Nagle, owner of Creative Integrations, is always on 
the lookout for new solutions that can help their custom- 
ers improve operational efficiency. While at the National 
Association of Broadcasters (NAB) conference in April of 
2012, Tim discovered FreeNAS as an open source unified 
storage operating system. He had a client with an existing 
NAS, but the client didn’t have anyone to administer it. Al- 
though Tim could do it himself, the time investment need- 
ed to learn his customer’s storage platform would cause 
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delays and keep him from other critical duties. It would 
also mean constant additional oversight. 


Improved Workflow on Open Standards 

The solution was clear for Creative Integrations. They 
completely rebuilt their client's backup server with FreeN- 
AS for a fresh start. As a result, workflow improved great- 
ly, throughput increased significantly, and workers found 
the intuitiveness of the FreeNAS interface easy to use. 
After the success of the initial deployment, Creative Inte- 
grations converted the other NAS server to FreeNAS and 
set it to run nightly replication over Rsync, preserving criti- 
cal data automatically and providing the client with extra 
peace of mind. 


-Tim Nagle 
TrueNAS in the Media Production Environment 


One of Creative Integrations’ clients, a children’s hospi- 
tal in Ft. Worth, TX, started a hospital TV station for the 
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patients to watch and participate in. They wanted to build 
a FreeNAS system for their multimedia storage, so the 
company helped consult them on which hardware would 
be the most compatible with their operating system and 
use case. During this process, they contacted iXsystems 
and found that the TrueNAS appliances were already us- 
ing the exact kind of hardware Creative Integrations was 
considering. 

TrueNAS also came with commercial-level support, 
something no enterprise can go without. Having expert 
assistance during deployment and in the production en- 
vironment can mean the difference between minutes or 
hours of downtime. It’s also an extra line of security for 
a business's critical data. The professionals at iXsys- 
tems will provide Creative Integrations with timely support 
throughout the lifetime of their TrueNAS appliances. 


-Tim Nagle 


Scalable Storage in a Post-Production 
Environment 

Another of Creative Integrations’ customers, a full-service 
post production studio in Dallas, needed centralized stor- 
age to house all their media, so they turned to TrueNAS. 
They decided on a 36-bay solution with dual, 6-core Xeon 
processors, 96GB of RAM, and two 10GbE, 4-port cards. 
These ports were configured with LACP and connected to 
a 24-port Netgear SXM7724 10GbE switch which serves 
all of the main client editing stations and utility computers. 
Non-production employees and the audio system are con- 
nected through a 24-port GSM7252 1GbE switch due to 
lower throughput needs. 


About iXsystems 

iXsystems builds rock solid enterprise- 
class server and storage solutions. All of 
our products are assembled, tested, and 
shipped from our company headquar- 
ters in Silicon Valley. Technical support 
is provided in-house by the same engineers that build the sys- 
tems. Thousands of companies, universities, and U.S. Govern- 
ment departments have come to rely on iXsystems’ custom- 
er-first commitment to excellence. iXsystems champions the 
cause of Open Source technology by dedicating extensive re- 
sources to several FreeBSD community projects: FreeNAS, PC 
BSD, FreeBSD, and TrueOS. 
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This system serves eighteen users, twelve of them re- 
quiring high bandwidth. It shares primarily over AFP, with 
CIFS used as a separate login system for inter-office 
access. The client uses their TrueNAS system to send 
projects, store media, and even render media out to the 
storage servers. The TrueNAS appliance eliminated the 
bottlenecks associated with using spinning disks to locally 
store data. With separate login systems, access to their 
critical media storage is limited to authorized production 
users only, adding an additional level of data security. 

Over time, the client started running out of memory on 
their TrueNAS system and needed to expand. iXsystems 
provided Creative Integrations with a 45-bay expansion 
shelf, adding another 135TB of raw capacity to the initial 
7OTB. In total, they have 158TB of usable storage running 
RAID-Z, single disk parity with ZFS, with disks grouped 
into 5 drive vdevs (LUNs). They were able to introduce the 
additional storage into their operation quickly and without 
any hang-ups. 


-Tim Nagle 


Flexible Solutions for any Media Environment 
Both FreeNAS and TrueNAS have been critical in im- 
proving the operations of a growing number of clients for 
Creative Integrations. FreeNAS provides an open source 
storage platform for its customers to use in their media en- 
vironment. TrueNAS has additional features that provide 
extra data security with commercial grade support from 
the developers that bring the world FreeNAS. Both plat- 
forms provide the functionality, performance, and stability 
any organization needs to improve operational efficiency, 
and Creative Integrations looks forward to utilizing both in 
the future. 


MARK VONFANGE 

Mark VonFange is the Professional Services Manager at 
iXsystems, providing oversight and coordination of its FreeBSD, 
PC-BSD, and FreeNAS support and development services. The 
Professional Services Team provides services ranging from mis- 
sion critical support to software and firmware development to 
private consultation. Mark also develops internal and external 
documentation for division sales and marketing. 
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FreeNAS 


a Migration Story 


In 2010, | was employed as a system administrator, and one of my 
aims was to administer the file sharing service. After trying a few 
different solutions, all based on Linux and well-known protocols 
(CIFS and Netatalk), | decided to switch to FreeNAS. While it was 
an old version, and therefore without any of today’s gadgets, the 
choice was the right one. Even years after | left the company, the 
other admins are able to run the machine without any problems. 


cess and what advantages FreeNAS provided. 

This is not a technical article, it is just a “tale” of 
how I’ve managed the migration. Please note the proce- 
dure described here is not necessarily the best method or 
the one that optimally applies to other scenarios. 


y his article briefly summarizes the migration pro- 


The Context 

The company was running several Linux physical serv- 
ers — specifically, one for ERP, one for file sharing, one for 
e-mail, one for external services (FTP, Web Server), and 
one as a gateway/proxy/firewall. There were around 200 
workstations, with mostly Microsoft Windows PCs and for- 
ty-five Apple Macs (as graphical workstations). The entire 
network was wired as Gigabit Ethernet and there were 
three access points used by the sales team who were us- 
ing Microsoft Windows laptops. 

While the majority of the clients shared small to medium 
files, the graphical workstations shared files ranging from 
SOMB-600MB each. Moreover, the Microsoft Windows 
PCs frequently accessed many documents, meaning that 
the users were usually opening a file several times a day 
to add, modify, and save the content. Meanwhile graphi- 
cal workstations accessed a small subset of the shared 
files infrequently. While it was true that the PCs seldom 
accessed graphical files, the graphical workstations often 
had to access files shared by PCs. Finally, all file access 


BSD 


MAGAZINE 


sa 


had to be authorized and granted on a per-user and per- 
office policy. Luckily, all the users and their roles were al- 
ready enumerated via an OpenLDAP server (the machine 
running the ERP). 

Due to the above requirements, | decided to implement 
a NAS solution that had to: 


¢ connect to the OpenLDAP server in order to authenti- 
cate the users; 

¢ provide a per-office share as user(s) workspace; 

¢ provide a way to do automatic backups at the fastest 
speed possible; 

¢ provide a way to specify exactly which user(s) can ac- 
cess which document(s); 

¢ beas reliable as possible; and 

¢ have an easy way to add extra disk space on demand. 


The motivation that pushed me to choose a NAS ded- 
icated system was the following: as time passed by, 
the sharing service got more and more complex with 
the need to deal with different operating systems and 
versions, as well as different platforms, file formats, 
and so on. While Open Source software like Sam- 
ba and Applelalk covered the scope well, | was also 
looking for a more integrated solution, and most no- 
tably, something easier to use, without having to give 
up flexibility and stability. The “ease of use” point was 
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motivated by the fact that | needed to share the NAS 
configuration with other administration profiles, and 
while | felt (and still feel) comfortable with the com- 
mand line, others do not. 


Migrating to FreeNAS 
The choice was, as readers can imagine, to adopt 
FreeNAS. The reason was that the company had al- 
ready migrated some of the servers from Linux to Free- 
BSD-based solutions. The first was, in fact, the gate- 
way/firewall appliance that was running pfSense, then 
the external server was migrated to FreeBSD to provide 
both Web and FTP and then a few internal workstations 
(mainly by the IT employees). Therefore, choosing a 
FreeBSD system for the NAS seemed like a natural 
step, and since | wanted to have something dedicated 
and integrated, the FreeNAS project seemed like the 
right choice to me. 

Of course, the decision was based on several factors 
related to FreeBSD and FreeNAS, and in particular: 


¢ alow startup cost; 

¢ the stability of the system; 

¢ the availability of ZFS as a file system; 

¢ compatibility with the main sharing technologies 
(CIFS, AppleTalk); 

¢ an easy to use interface for administration. 


In the following, all the above will be addressed. 


A Low Startup Cost 

Luckily, the company | was employed by was already 
used to Open Source solutions and did not want to get 
locked into vendors’ products if possible. And luckily, 
FreeNAS is a solution that does not impose a vendor 
lock-in; it is free and does not require a lot of resources 
to run. This allowed me to implement a NAS solution ex- 
ploiting good, but cheap, hardware with no cost at all for 
the software. 


The Stability of the System 

One thing | noticed while working with both Linux and 
FreeBSD machines was that the latter ran smoothly for 
a longer time. Usually, keeping a FreeBSD machine up- 
to-date was a simpler task than keeping a Linux one up- 
to-date. This was particularly true also because the com- 
pany was running different Linux distributions, each with 
its own update policies, release schedules, and internal 
mechanisms. In other words, the FreeBSD machines all 
behaved coherently. Finally, FreeBSD proved it can run 
longer than Linux without hanging or needing reboots on 
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the same (old) hardware. Of course, while this strictly de- 
pends on the Linux distributions, the versions, the hard- 
ware, and the administrator(s) skills, the above was true 
in this context. 


The Availability of ZFS as a File System 

Two features of ZFS were particularly attractive to me for 
this job: the availability of snapshots and the integrated 
volume manager. 

On the other Linux machines, we had to play with parti- 
tions and mount point each time a new disk was added, 
and that was due to the error of not setting up a volume 
manager from the beginning. With ZFS the problem dis- 
appeared. 

Moreover, the idea of snapshots was appealing to 
me because it allowed me to implement an automated 
backup system transparent to the user. In fact, often a 
user started modifying a large graphical file just to dis- 
cover he or she made a mistake and had to start over. 
Forcing the users to learn a revision control system was 
too complicated; therefore | decided to make snapshots 
on aregular schedule to help the users to recover “dam- 
aged” files. On the other hand, the users were informed 
that after a certain amount of time snapshots would be 
made persistent, meaning history would no longer be 
available. 

Just for the sake of clarity, besides the snapshots, there 
was a regular backup technique. 


The Compatibility with the Main Sharing 
Technologies 

Having a heterogeneous environment and having to 
grant simultaneous access to Unix/Linux machines, Ap- 
ple OS X computers, and Microsoft Windows PCs re- 
quires deep support for several sharing protocols and 
technologies. One of my aims was to reduce overlap 
in choosing protocols, possibly down to a single one 
for ease of administration. The fact that FreeNAS sup- 
ports CIFS, AppleTalk, and NFS allowed me to switch 
to the best protocol available depending on the client 
machine. 


An Easy to Use Administration Ul 

Usually Unix administrators are tied to the Command Line 
Interface (CLI), and to some extent, they also believe that 
using a GUI is child proof. However, not all administrators 
are Unix ones, and this was the case: the company had 
one Microsoft Windows and an Apple (Junior) administra- 
tor, both with little or no Unix skills. | decided that apart 
from the need for them to acquire some Unix skills, they 
had to be enabled to participate in the NAS management 


BSD :: 


MAGAZINE 


SUCCESSFUL STORY 


to both reduce my overhead and also make better use of 
the resources (in this case, people) available. 

FreeNAS came with an excellent Web UI. | was able 
to let my colleagues take part in the configuration phase 
and to grow up to the point that they were able to create 
and manage shares, crontab and backup scripts, and 
users’ privileges without any further help. In this way, 
| was mainly needed for the harder tasks and low lev- 
el configuration while they were able to do day-to-day 
maintenance. 


The Migration 

There was around 1TB of data to be migrated from one 
Linux server, and another 400GB to be consolidated to 
the FreeNAS installation. In fact, while the main project 
was to move only the Linux file shared part (the former), 
reviewing the sharing status revealed that other stuff 
needed to be placed on the FreeNAS system (such as 
files and folders users shared among their workstations 
without informing us). 

Since the total size of the data was not that huge, | was 
able to migrate everything within hours, and in particular, 
during the night. However, | did not run a single migration, 
but proceeded with different steps. 

In the beginning, | set up the FreeNAS machine us- 
ing a USB stick to boot, so as not to waste even a single 
byte on the hard disks. After the initial required setup 
(network interfaces, admin password, etc.) | connected 
the FreeNAS to the OpenLDAP server to sync all the ac- 
counts. This was really simple thanks to the great tools 
FreeNAS provides. 

After that, | decided to remotely mount the already avail- 
able shares into the FreeNAS and to “republish” them on 
the network, so that the FreeNAS was effectively a proxy 
for the shares. Thanks to the fact that the FreeNAS and 
the original server were accessing the same account da- 
tabase, | did not have any problems with the permissions. 
My choice at this point was to republish shares using only 
the CIFS protocol in order to have a simpler situation than 
using a per-client protocol. 

| ran a few tests for a week to ensure that everything 
was working fine, even though performance was not good 
due to the fact that the FreeNAS machine was not serv- 
ing local data. 

After that, | implemented a local backup, that was a set 
of scripts, to do regular backups of the FreeNAS and its 
content over a part of the FreeNAS itself, as well as to the 
central backup machine. This was the only phase in which 
| needed to use the FreeNAS CLI, since we had to deal 
with shell script development. More in detail, | had to do 
some “tricks” to place scripts on the USB stick and to be 
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able to install a few other tools out of the ports. However, 
as soon as the scripts were in place, | took back the Web 
UI to place them in the crontab table. 

Having the FreeNAS machine acting as a proxy and the 
backup ready to work, | started the migration of the clients 
so that they were redirected to the FreeNAS server in- 
stead of the original Linux NAS one. 

| deployed a ZFS file system with roughly one per office/ 
user file system, setting up quotas and assigning owner- 
ship and permissions. 

Finally, | migrated all the data, using rsync on a regular 
basis for a couple of passes, to reduce the total copy over- 
load. The migration was performed during a weekend to 
reduce the problems with live data and to avoid having to 
disconnect the users. 


So Far, So Good! 

While the migration could seem long for such a moderate 
amount of data, | preferred to do it in that way because it 
was my first experience with FreeNAS in an enterprise en- 
vironment. It is worth saying | did not have any particular 
problem with the migration, and the system is very stable 
and rock-solid. 

During this time, | added a few extra features to our 
FreeNAS machine, like the aggregation of the two on- 
board network cards, as well as regular updates of the 
whole system, without incurring any downtime. 

The last time | had the opportunity to check the FreeN- 
AS machine, it was running for a year without any particu- 
lar problem, and remember I’m talking about a machine 
used for day-to-day work but that we, the administrators, 
kept forgetting we had! 
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In the past years, virtualization has been strongly advocated, 
and today it is quite common to find whole servers virtualized 
onto a single hardware machine. It may sound strange that 
the described FreeNAS server was implemented physically in- 
stead of virtually, but the reason for that was to keep the total 
cost as low as possible. As described in the “Low Startup Cost” 
section, the company was already in the Open Source and 
commodity hardware mindset. Therefore, instead of investing 
money in a huge supercluster, the company preferred to buy 
and assemble “small” and cheap servers. This also allowed the 
company to implement replication solutions quite easily. 


The only problem | ran into was tied to the USB stick | 
used as root filesystem: one day | was physically moving 
the machine from one place to another only to discover 
that the USB stick was unable to boot the machine any- 
more. It was, however, a “no pain situation” since | had an- 
other “clone” USB stick from which | started the machine. 


My experience with FreeNAS is nothing but good on ev- 
ery aspect. It is worth noting that the effort done by the 
FreeNAS team to provide a clean, usable, and easy to un- 
derstand Web UI is really important in my opinion. While 
“real” Unix system administrators will always be able to 
fire up a console and see what is happening under the 
hood, having a good UI allows other people to jump into 
the admin side. Of course this does not mean that ev- 
eryone is automatically skilled as an administrator, but it 
means that the admin burden can be scattered amongst 
different people with different skills. This was indeed my 
experience. Thanks to the UI, non-Unix administrators 
were able to learn quickly and perform many routine tasks 
on the FreeNAS configuration. 

Today, even years after | left the company, the other ad- 
mins are still able to keep the FreeNAS box up-to-date 
and it runs without any particular problem. This is proof of 
the stability of the system itself. 


LUCA FERRARI 

Luca Ferrari lives in Italy with his wife and son. He is an Adjunct 
Professor at Nipissing University, Canada, a co-founder and the 
vice-president of the Italian PostgreSQL Users’ Group (ITPUG). 
He simply loves the Open Source culture and refuses to log-in to 
non-Unix systems. He can be reached on line at http://fluca1978. 
blogspot.com. 
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The Interview with 


Alfred Perlstein 


VP of Software Engineering at iXsystems 


Alfred has been working on the FreeBSD kernel for 
the past 13 years. His areas of interest have been 
file systems, multi-processor support, performance, 
and stability of FreeBSD. He has alternated between 
CTO/VP roles at companies like OkCupid, to kernel 
developer positions at Apple and Juniper Networks. 
His current role is FreeNAS Project Manager and VP 
Software Engineering at iXsystems. He continues to 
contribute to the FreeBSD project when time allows 
and encourages his team to do so as well. Recently, 


he agreed to give an interview to BSD Magazine. 


BSD Magazine: Hello Alfred, could you tell us 
how you got into FreeNAS? 

Alfred Perlstein: | had known iXsystems for many years 
through their support of the FreeBSD project. When it 
came time to purchase some storage at my previous job 
| naturally looked to iXsystems for a solution. We picked 
a FreeNAS — based server and were really impressed 
with the software. | was so impressed with the FreeNAS 
project, the developers behind it, and iXsystems that | 
reached out to work at iXsystems so that | could work on 
FreeNAS as well as TrueNAS. 


BSD: Tell us the story behind FreeNAS project. 
How it started and was it Open Source in nature 
from the beginning? What was and is the role of 
iXsystems in it? 

AP: FreeNAS started with a developer named Olivier Co- 
chard-Labbe in 2005. He wanted to convert an old PC into 
a NAS box for his home, but there wasn’t an easy way to 
do that. He worked on that for several years with a cou- 
ple of other developers, using a MOnOwall-based web UI. 
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Eventually his interest and that of the other developers 
waned, and one of them proposed moving FreeNAS to a 
Debian Linux — based system instead of FreeBSD. At iX- 
systems, we'd been using FreeNAS for years and selling 
people servers that were specifically for FreeNAS, so Matt 
Olander decided we should step up and offer to continue 
BSD-based development of the project. Olivier agreed, and 
iXsystems began the FreeNAS 8 project, re-implementing 
FreeNAS using Django and FreeBSD 8. Since then we've 
brought FreeNAS up to the most recent version of ZFS and 
added new features like encryption and jails support. 


BSD: Can you give us a couple of examples of 
successful stories with FreeNAS? 

AP: One time we got a random call from the United Na- 
tions, looking for FreeNAS support for a 100 TB deploy- 
ment! Actually, that sort of thing happens all the time. Cus- 
tomers call in from huge organizations around the globe 
telling us about these giant FreeNAS installs they've got 
running critical business functions. Every story brings a 
smile to our faces. 
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AP: Most FreeNAS deployments are small home us- 
ers, probably not more than 12 TB. This is due to most 
FreeNAS devices being small boxes with just a handful 
of consumer hard drives. Businesses will often deploy 
systems with over 20TB in a rackmount chassis, often 
for backup purposes. We've heard of universities, how- 
ever, who have created FreeNAS deployments upwards 
of a petabyte. 


AP: Like any software, FreeNAS has gone through some 
challenges. Early in FreeNAS 8, it became necessary to 
double the size of the system image. This meant that from 
8.0 to 8.0.1, everyone had to use the CD image to up- 
grade, or perform a reinstall and import if their install me- 
dia was too small. Most of the time, we’re able to identify 
problems early, document and fix them, and communicate 
with the community very quickly what the issue is. 


AP: There are lots of ways for community members to 
help out. One great way is to produce plugins — in that 
case, the contributor is free to distribute the plugin howev- 
er they like. We always appreciate people who help others 
on the forums, as well as reporting bugs or making feature 
suggestions. It’s also possible to submit patches, but that 
doesn’t seem to happen very often. 


AP: Our Community Manager, Dru Lavigne, goes to many 
conferences and runs small classes on how to get start- 
ed with FreeNAS. There is also a series of video walk- 
throughs available on FreeNAS.org to help people get 
started, along with a fairly exhaustive online manual: 
http://doc.freenas.org/. 


AP: FreeNAS is about home users first, but really anyone 
except businesses with the most stringent requirements will 
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find that it suits their needs. iXsystems is a 
small business with a strong technical incli- 
nation, and while we worked 
on FreeNAS, we also made 
sure to include every- 
thing we would want in 
a storage solution. As 

| mentioned, we've 
used FreeNAS in 
one way or another 

to host our internal 
file share for years. 


BSD: Is FreeNAS 
suitable for cloud 
storage or has it been already 
used in such a scenario? 

AP: Through the plugin jail, it’s pos- 
sible to install Owncloud or any simi- 
lar FreeBSD-compatible tool. Own- cloud lets a 
user upload and access their files on a self-hosted server 
from anywhere in the world. 


BSD: Is FreeNAS based on pure FreeBSD or does 
iXsystems modify the kernel tree? 

AP: FreeNAS uses NanoBSD to create a stripped-down 
image, and unnecessary drivers are excluded, such as 
Wi-Fi and video card drivers. NanoBSD also offers us the 
flexibility of a backup system image in case an upgrade 
fails or the user needs to revert to a previous version. 


BSD: Does FreeNAS support all the platforms 
that FreeBSD does? What are the better 
architectures on which FreeNAS can run? 

AP: FreeNAS runs exclusively in x86 and x86-64 architec- 
tures. 64-bit is really the target architecture for FreeNAS, 
due to the RAM requirements of ZFS. Users with older 
hardware are encouraged to run UFS — based systems, 
although they will not experience the full utility of ZFS. 
There is progress being made to fix ZFS into smaller 
memory machines. This may be available in later versions 
of FreeNAS. 


BSD: What is the relationship between the 
FreeNAS and FreeBSD projects? Does iXsystems 
contribute back to the FreeBSD project? 

AP: iXsystems is a major sponsor of FreeBSD, and most 
of the FreeNAS development team are also developers of 
the FreeBSD project as well. Our CTO, Matt Olander, is 
part of the FreeBSD Marketing Team, and the Community 
Manager, Dru Lavigne, is a member of the board of the 
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FreeBSD Foundation. Working on FreeNAS has helped 

iXsystems expose a number of bugs in FreeBSD, which 

the team was able to fix. With FreeNAS soon to 

move closer to the cutting edge of 

FreeBSD, we expect even 

more mutual benefit in 
the future. 


BSD: It seems that 
FreeNAS storage 
is strongly based 
on ZFS. Did the 
inclusion of ZFS into 
FreeBSD drive that choice? 
AP: ZFS in FreeBSD has been a great boon 
to FreeNAS, and is a big reason why we didn’t want it to 
move to Linux. ZFS is an amazing technology for storage, 
and when we began working on FreeNAS 8 we decided to 
center it around ZFS. Since then, we’ve made ZFS more 
accessible than ever, and even brought in improvements 
like the encryption option in FreeNAS 8.3.1. 


BSD: Does FreeNAS cover all the features that 
ZFS provides, like deduplication? 

AP: As of FreeNAS 8.3, FreeNAS is at ZFS v28 just like 
FreeBSD. This means that RAID-Z3, deduplication, and 
detachable ZILs are all available in FreeNAS. The web 
Ul reflects the ZFS pool, so even if someone performs an 
unconventional pool configuration from the shell, that will 
be fully reflected in the UI. 


BSD: Does FreeNAS support other less 
memory consuming file systems like UFS/FFS 
as well? 

AP: Most of FreeNAS’ functions work perfectly well on 
UFS, which is supported in the Web UI. A handful of 
other filesystems are also available in the importer for 
read-only. 


BSD: How does FreeNAS compare to other 
Unix/Linux storage solutions? 

AP: FreeNAS is very good at having a core selection of 
stable services for NAS available and easy to configure. 
FreeNAS is also probably the best at offering the pow- 
er of ZFS. Others are very adaptable to third-party soft- 
ware, and this is something we're working on improving in 
FreeNAS as well. 


BSD: Are there any guidelines or automated 


tools for migrating from other (not strictly BSD) 
solutions to FreeNAS? 
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The Interview with Alfred Perlstein, VP of Software Engineering at iXsystems 


AP: None that we currently know of however, many peo- 
ple have successfully used rsync to migrate data. If a user 
decides to create a tool, we would love to integrate it into 
FreeNAS. 


BSD: What is the added value of using FreeNAS 

instead of using pure FreeBSD (or another Unix 
system)? 

AP: Certainly ease of use. The power of FreeNAS is that 
you can have network storage running with advanced 
filesystem features as well as integration with Active Di- 
rectory in very little time, all through a user friendly GUI. 
We have many video tutorials online as well as written 
documentation that can help even your most basic user 
get up and running in a matter of minutes. The same 
configuration would take an expert days, if not weeks, to 
set up on FreeBSD. 

Another bonus feature of using FreeNAS is that we 
have a huge userbase on a specific version of FreeBSD. 
This allows us to maintain a level of stability specifical- 
ly tailored to our use-case. We inbox only vetted fixes 
from FreeBSD that we know address issues our users 
are seeing. 


BSD: FreeBSD provides mainly two 
technologies for disk data encryption, GELI 
and GBDE. Does FreeNAS have any way to 
encrypt some or all of its storage? 

AP: The most recent release of FreeNAS, 8.3.1, added 
a GELI-based encryption option for ZFS. This allows the 
on-disk data of a ZFS pool to be encrypted with a key 
and optional passphrase, with a recovery key option. 
Obviously this means that only FreeNAS or FreeBSD 
can import an encrypted pool, but all the other functions 
of ZFS including snapshot replication are unaffected. 
This is designed only to protect offline disks, or disks 
in which failed firmware prevents the deletion of sensi- 
tive data. 


BSD: iXsystems provides a complete 
solution, both hardware and software, 

based on FreeNAS. What are the advantages 
for using such devices instead of using 
commodity hardware or other supported 
hardware? 

AP: iXsystems is a hardware company with a long his- 
tory of excellence. When you purchase a FreeNAS so- 
lution from iX, you can be assured that months of hard- 
ware qualification have been performed to make sure 
every single component is within specifications set by 
the CPU, motherboard, disk and controller manufactur- 
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ers. We first make sure the recommended hardware is 
fully compatible, and then we install FreeNAS to your 
exact specifications. A FreeNAS solution purchased 
from iXsystems will be the most stable FreeNAS sys- 
tem that can be assembled and ready to deploy out of 
the box. 

There is also a full enterprise-grade appliance we offer, 
known as TrueNAS, which provides the user full enter- 
prise support and additional features, like high-availabil- 
ity active/passive failover, for instance. 

Either way, by doing business with iXsystems, you're 
supporting the FreeNAS, FreeBSD, and PC-BSD projects. 


BSD: Consider a scenario where several 
FreeNAS machines are involved, does 
FreeNAS support (or will support) 
replication/mirroring and centralized 
management (let’s say clustering)? 

Moreover, are there any plans to implement 

a distributed file system between FreeNAS 
nodes? 

AP: FreeNAS already supports replication snapshots 
to backup servers. Since FreeNAS is based on FreeB- 
SD, any file system technology that appears in FreeBSD 
(and we decide whether it will provide utility to FreeNAS 
users) will be included in the upcoming FreeNAS releas- 
es. At this time there are no clustering solutions. How- 
ever we do have plans for a distributed backup system 
to help people save their data. 


BSD: Apart from the “raw” storage, what are 

the main features that FreeNAS provides? 

For example link aggregation, backup of the 
configuration, scalability, support for different 
protocols, and so on... 

AP: I'd say you hit all the big points of FreeNAS right 
here. We support link aggregation of multiple 10gigE in- 
terfaces, configuration backup is just a single click in 
the UI, we already have a great track record for stabil- 
ity, and we support multiple protocols: SMB/CIFS, NFS 
and AFP. 


BSD: Does FreeNAS include (or will it 

include) the PCBSD PBI format for additional 
applications or are administrators required to 
use FreeBSD packages and ports? 

AP: Yes! PBlIs are supported under the plug-ins archi- 
tecture (http://doc.freenas.org/index.php/Plugins). With 
our next release, the entire PBI catalog of PC-BSD 
(http://ocbsd.org/) will become available to FreeNAS 
users as well. 
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BSD: NAS based systems for home and 
domestic users often offer multimedia 
streaming and Peer-to-Peer features. Does 
FreeNAS embed any of them natively or viaa 
third party package? 

AP: One of our most popular p2p apps is Transmission. 
There are also a number of usenet related plugins. By 
leveraging the plug-in jail, just about any FreeBSD port 
that supports streaming can be installed and leveraged to 
build a media center. 


BSD: Usually a home user will buy some sort 
of NAS hardware to plug in the network 
and forget about. FreeNAS requires a little 
extra effort, since the user has to install and 
configure the machine. Therefore, why should a 
home user decide to run FreeNAS? 
AP: This is exactly why a home user would pick FreeNAS. 
It is an “install and forget” appliance if you want it to be. 
However, because it is based on the modern and powerful 
FreeBSD operating system, is open source, and supports 
plug-ins, the possibilities for expansion are endless. 

We really have a sweet spot here, the user who just 
wants to “set and forget” can do that, and the tinkerer can 
do as much tinkering as they like. 


BSD: What are the differences between the 
community based FreeNAS solution and the 
TrueNAS solution proposed by iXsystems? 

AP: TrueNAS takes the powerful interface of FreeNAS 
and puts it on a purpose-built hardware platform, with ev- 
ery piece tested and verified by iXsystems. Since we pro- 
vide both the hardware and the software, iXsystems can 
guarantee a much higher level of support with TrueNAS. 
In addition, the stable hardware platform also allows for 
features like High Availability that would be very difficult 
to implement in FreeNAS, due to tremendous difficulty of 
supporting any and all hardware the user chooses. 


BSD: What is the future of FreeNAS? Could you 
tell us a bit about ongoing development? 
AP: Well right now two big things are happening. 

First off, we are moving to FreeBSD 9.1/stable. This 
will give us more hardware support and big performance 
gains. There is some talk in the FreeBSD community of 
virtualization coming to FreeBSD 9, so we may be able to 
pick that up as well. 

Second, the entire project is being converted to git by 
our two senior engineers William Grzybowski and Josh 
Paetzel as | write this. Once this is complete, we will be 
able to leverage the abilities of a distributed SCM in order 
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to attract more users to our project as well as help us with 
the ability to qualify changes in a unified build system be- 
fore they are even submitted to the main project. 


BSD: Why should a user migrate from another 
storage solution to the one based on FreeNAS? 
AP: In an enterprise setting we find that FreeNAS per- 
forms as well as a number of solutions that are many 
times more expensive than a FreeNAS machine. For peo- 
ple looking for professional support and enterprise fea- 
tures we also have our TrueNAS product which competes 
on the same level of performance, stability, and features 
as the major SAN and NAS offerings currently on the mar- 
ket, at a fraction of the cost. 

In the SOHO market we find that most of the solutions 
out there have a niche that they are good at. However, 
along with that you wind up with a SOHO based solu- 
tion and all the limitations involved. FreeNAS is very fast 
compared to the rest of the options out there, constantly 
evolves and improves, and is an open platform. 

lf you find yourself wishing for better performance, 
FreeNAS can help you on that front with the ZFS filesys- 
tem and our carefully tuned FreeBSD operating system. 
Or maybe you wish to move some of the applications off 
your desktop PC and onto the appliance but you do not 
want to interrupt services for the rest of your office or fam- 
ily when the family PC is “installing updates” or a new vid- 
eo card is being installed. 


BSD: Is there anything you would like to add or 
tell BSD Magazine readers? 
AP: I'm really excited about what is going on. We have 
a great 8.3 release under our belts now. Our team is the 
best team I’ve ever worked with. We have the users (over 
5 million downloads to date). What we're hoping for is 
more developers. If you have done something cool on 
FreeNAS, either with your configuration, or by hacking the 
code yourself, we really want to hear from you. 

| want to thank the community, our forum members, and 
our developers very much for all the time they put into 
making FreeNAS a serious product that has had an im- 
pact on a large number of users. You guys rock. 


BSD: Thank you for your time and this excellent 
interview. 
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From Reading to Real 
Life: Try Out a Demo of 


FreeNAS! 


When | heard that the next issue of BSD Magazine would be 
dedicated to FreeNAS, an idea came to my mind. | thought: 
“We need a demo!” 


gave me the opportunity to do it not only in terms 

of hosting but also in terms of security. I’m aware 
that giving out the admin account has its consequenc- 
es. The demo is hosted like a professional one, so there 
should be no problems with keeping up the host, even if it 
becomes popular among BSD Magazine readers. 

The FreeNOS is a name for a FreeNAS 8.3.1 demo host, 
that you can find at http://freenos.netopenservices.org. 
There is no catch — you can play with all the stuff freely 
and even destroy all of the data! Everything can be done 
with no consequences for the rest of the hosting, since 
an automatic kind of refresh of all the components is done 
every two hours. So, with every two hours all the data is 
erased. That's what | call a real demo. 


N etOpenServices (http:/www.netopenservices.com) 


You have a full VM with 8 GB of RAM and 12 virtual 
40GB HDDs to play with. 
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Reporting * Settings 


*“ System Information “~ Account 


2ystem Information 


Hostname 


Build 


Platform 


Memory 


System Time 


Uptime 


Load Average 


freenos.netopenservices.org 


FreeNAS-8.3.1-RELEASE-x64 (r13452) 


AMD Opteron(tm) Processor 4180 


8176MB 


Wed Apr 03 16:19:31 CEST 2013 


4:19PM up 1 day, 16:38, 0 users 


0.01, 0.02, 0.00 


Connected through 195.154.100.15:6969 


Figure 1. System 
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From Reading to Real Life: Try Out a Demo of FreeNAS! 


The plugins system is up, with two plugins: Firefly and 
Transmission. 


Reporting “| Settings = System Information “= Account “= Storage “| Services “ 
Core | Fiugins 
- 
= “| 
Vitw Mount Pointe | 
Install Plugin 
Plugin name Version PBI Service status Actions 
Firefly 1696_7 firefly-1696_7-amdéa (EB update | | Delete 
Transmission 2.77 transmission-2.77-amd64 |ON Update | Delete 


Figure 2. Plugins 


Figure 3. Shell 
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Figure 4. Services 
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For the demo, you have a user called ‘bsdmag to test 
the ‘shell’ for example. 


I’ve put the maximum number of services up. 


I’m really impressed by the work done by FreeNAS on 
ZFS, so | have divided the disks into encrypted ZFS. Dur- 
ing your tests you can change it, erase, or do whatever 
else you want. 
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Figure 5. ZFS 


All who want to test it, need to send an e-mail to bs- 
dmag@netopenservices.org only, with ‘FreeNAS — BSD- 
MAG’ in the subject of a message to receive all the login/ 
password details. 
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Edit 
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Figure 6. Disk 


The demo is available till the end of June. However 
if you need more time to test it, don’t hesitate to e-mail 
info@netopenservices.fr with a subject “FreeNAS demo” 
and ask for extension of this period. 


| hope you enjoy the reading and let the show begin! 
Come and play with FreeNAS! 


IMAD SOLTANI 
Imad Soltani is an “old school” unix/linux/infosec/bsd/atari lov- 
er. You can reach him at https://twitter.com/ximad. 
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Dead Simple and FREE 
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Key Features: 


v Easy installation 

v Use on inexpensive x86 hardware 

’ Wide diversity of platforms (VM,dedicated hardware) 
v Full IPv6 support 

v Dual-stack 

v Address family translation, PD, etc 

v Enterprise routing: BGP, MPLS, etc 

v Fully featured load balancer: L7, SSL, etc 

v IPsec VPN, Layer2 IP tunneling, L2TP and PPTP 

v Revision based and fully readable configuration 

Vv Open API with SOAP integration 

v Full OpenBSD network capabilities without limitations 
Y FREE Edition for personal use 


Download FREE Firewall and Router 
http://www.halonsecurity.com 


HALON 


solutions 


Open Source Systems 
Design - Administration - Consulting 


- design and administration of server farms 

- load balancing and high availability solutions 
- ZFS file servers and storage appliances 

- FreeBSD, Openlindiana and Linux 


Our open source projects: 


VX ConnectBot: SSH and telnet client for Android 
mfsBSD: memory-resident FreeBSD installations 
Zfs-stats: ZFS statistics tools 


Contact information: 


VX Solutions s. r. o. 
Mag. Martin MatuSka 
E-Mail: office@vx.sk 
Web: http:/Awww.vx.sk 


Headquarters: 
San Jose, CA 
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855.GREP.4.I1x% | Contact Us 


992 Compatibility 


online now... 


IXSYSTEMS AND YOU ARE 
THE PERFECT MATCH 


I'ma _ | Storage Reseller 


In | The EU 
"9 . 
Looking for | Storage Solutions to Sell | | @ 
| 1Xsys tems 
A Technology Partner | 
Enterprise Storage . Technology Partner Seeking 
Lv eis More Technical Experience Fesel pay ay nen a for 
» aa New Business Opportunities Se ee ee 
Personal aa Eoner | 
~~) Service 
, Bold New Informat: o 
— Technology = 
Visit Today! | 
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